[11348] in bugtraq
Re: Bay Annex-Pri Privacy Issues
daemon@ATHENA.MIT.EDU (Eric Vyncke)
Wed Aug 11 04:53:56 1999
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <4.1.19990810105834.00b4a490@brussels.cisco.com>
Date: Tue, 10 Aug 1999 11:03:47 +0200
Reply-To: Eric Vyncke <evyncke@CISCO.COM>
From: Eric Vyncke <evyncke@CISCO.COM>
X-To: lumpy <lumpy@BLUE.9MM.COM>, BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.10.9908091041080.7269-100000@blue.9mm.com>
Even, if I'm not obviously working for Nortel ;-), some info:
DNIS, Dialed Number ??, is the destination phone number a remote user
is dialling to
CLID, Calling Line ID, is the source phone number a remote user is
dialing from
It is fairly common for NAS, Network Access Server, (the large routers
with 100's or 1000's of modems), to use both the DNIS and CLID to
perform some 'authentication'.
E.g.:
- some ISP are sharing the same big NAS and using the DNIS to differentiate
calls to ISP#1 from calls to ISP#2
- refuse calls coming from unknown CLID
- ...
CLID and DNIS are:
- provided by the Telco (and not 100% trustable -- the Telco could be
hacked)
- available on most NAS from most vendors by SNMP or RADIUS or TACACS
Just my 0.01 EUR
-eric
At 10:43 09/08/1999 -0400, lumpy wrote:
>I was just wondering if anyone had noticed that in the SNMP MIB in
>the annex-pri models there is a table that has what appears to be
>dnis information or something. (I havent seen the mib definition
>so i dont know what it is exactly.)
>
>It is located at 1.3.6.1.4.1.15.2.16.1.1.1.2.
>
>I tried to get in contact with someone at bay/nortel, but I got no
>replies.
>
>Is it just me, or is this a really bad idea?
>
>I suppose its just another reason to read your instruction manual.
Eric Vyncke
Consulting Engineer Cisco Systems EMEA
Phone: +32-2-778.4677 Fax: +32-2-778.4300
E-mail: evyncke@cisco.com Mobile: +32-75-312.458
