[39843] in North American Network Operators' Group
Re: 'we should all be uncomfortable with the extent to which
daemon@ATHENA.MIT.EDU (Richard Welty)
Wed Jul 25 13:24:11 2001
From: Richard Welty <rwelty@averillpark.net>
Date: Wed, 25 Jul 2001 17:24:50 GMT
Message-ID: <20010725.17245028@mis.configured.host>
To: nanog@nanog.org
Cc: caida@caida.org
In-Reply-To: <20010725101437.D9794@root.ucsc.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Errors-To: owner-nanog-outgoing@merit.edu
On 7/25/2001, 1:14:37 PM, Mark Boolootian <booloo@cats.ucsc.edu> wrote:=
> > Here? Probably not all that many.
> I wouldn't be so sure. You might want to take a look at the first=20=
couple
> of minutes of this session from the last NANOG meeting:
> http://www.nanog.org/mtg-0105/real/dnssec.ram
> It suggests that many (most?) of the NANOG attendees are shipping=20
passwords
> around in the clear (not necessarily all telnet, but indicative of a=20=
mindset).
> I think this suggests the problem is far worse than most people imagin=
e.
I think the real suprise to me was at the Pittsburgh IETF, and the numbe=
r
of people sitting on the wireless LAN in the Security Area open meeting=
whose passwords were sniffed and posted on the overhead projector.
if there were ever a bunch of people who were supposed to know better...=
richard
