[84657] in North American Network Operators' Group
Re: router worms and International Infrastructure
daemon@ATHENA.MIT.EDU (Christopher L. Morrow)
Mon Sep 19 17:19:11 2005
Date: Mon, 19 Sep 2005 21:16:57 +0000 (GMT)
From: "Christopher L. Morrow" <christopher.morrow@mci.com>
In-reply-to: <87ll1srcic.fsf@mid.deneb.enyo.de>
To: Florian Weimer <fw@deneb.enyo.de>
Cc: Gadi Evron <ge@linuxbox.org>, nanog@nanog.org
Errors-To: owner-nanog@merit.edu
On Mon, 19 Sep 2005, Florian Weimer wrote:
>
> * Gadi Evron:
>
> > I would really like to hear some thoughts from the NANOG community on
> > threats such as the one described above. Let us not get into an argument
> > about 0-days and consider how many routers are actually patched the
> > first... day.. week, month? after a vulnerability is released.
>
> The bad guys obviously aren't interested in taking down the Internet.
> I wouldn't worry too much. 8-)
>
> > I don't want the above to sound as FUD. My point is not to yell "death
> > of the Internet" but rather to get some people moving on what I believe
> > to be a threat, and considering it on a broader scale is LONG over-due.
>
I'm curious as to why people think that the problem isn't being addressed?
> I would ask some people who have experienced meltdowns on large-scale
> networks, due to Slammer, Blaster or something else. Basically, what
> do you do when you don't have management access to your network gear
> anymore, and stuff like that.
>
> To some extent, what you fear has already happened, and we could learn
> from that.
>
