[35144] in North American Network Operators' Group
Re: Warning: Cisco RW community backdoor.
daemon@ATHENA.MIT.EDU (jlewis@lewis.org)
Wed Feb 28 02:15:19 2001
Date: Tue, 27 Feb 2001 19:11:58 -0500 (EST)
From: <jlewis@lewis.org>
To: David Schwartz <davids@webmaster.com>
Cc: John Fraizer <nanog@Overkill.EnterZone.Net>,
Sean Donelan <sean@donelan.com>, <nanog@merit.edu>
In-Reply-To: <00a401c0a077$b269bb80$7c4cf9d1@geeksparadise.com>
Message-ID: <Pine.LNX.4.30.0102271911170.951-100000@redhat1.mmaero.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Mon, 26 Feb 2001, David Schwartz wrote:
> > While I agree that "public" and "private" are "wellknowns," in most
> > implementations, they at least show up in the code. Cisco chose to hide
> > this one where it would not show up in the code. That IMHO is a very bad
> > thing and does bad things to my confidence level in Cisco.
>
> Do a "show snmp group" from an enabled console prompt. It does show.
On some routers that have the backdoor, "show snmp group" isn't even a
valid command.
--
----------------------------------------------------------------------
Jon Lewis *jlewis@lewis.org*| I route
System Administrator | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
