[40430] in bugtraq
RE: router worms and International Infrastructure [was: Re: IOS exploit]
daemon@ATHENA.MIT.EDU (martin@kusala.net)
Thu Sep 22 13:37:47 2005
Date: Thu, 22 Sep 2005 03:02:08 -0700
From: martin@kusala.net
To: bugtraq@securityfocus.com
Message-ID: <20050922030208.2a7bab91df03a62b737525ccbeb485a8.9d54284fb4.wbe@email.email.secureserver.net>
MIME-Version: 1.0
Content-Type: TEXT/plain; CHARSET=US-ASCII
> That leaves us with 30% of the Internet dead, and that's really a bad
> scenario as someone I know would say.
There's been dramatic advances in router vulnerability research
recently- one hopes that Cisco and Juiper are keeping pace. While we
are still in the theoretical stages of these attacks, I wonder how we
might recover from such a worm. When the 'network-is-unreachable'
messages reach critical mass how do we distribute patches or
information on practical mitigates? Does Cisco have contingency plans
to open up gigantic pots-based BBS's and let the frantic network admins
dial in to receive IOS updates? I hope all you infrastructure owners
have a good plan.
m/
