Re: Newspaper Article about Cable Modem security

["Steven Osman" <sosman () terratron com>]

Reid,

Your statement is assuming that a hacker will use his designated IP address
to perform the hacking.  That's like saying "well, if we get hacked over a
dialup connection, we'll just trace the call and then there is no question
about who to blame!"  The more seasoned hacker will do something to cover
his tracks before stepping out into the world.

Why not start by scanning what IPs are available, starting from your subnet,
to see which can make it out onto the internet, and THEN start wreaking
havoc?

You may find unallocated IPs, and you may find someone's IP who has powered
down his equipment.

Steven Osman
Terratron Technologies Inc.

----- Original Message -----
From: REID FOX <reidfox () direct ca>
To: Michael Kelly <michaelkelley () home com>; Eric Toll
<etoll () syracusesupply com>
Cc: <firewall-wizards () nfr net>; <Neil.Ratzlaff () ucop edu>
Sent: Saturday, October 30, 1999 3:05 PM
Subject: Re: Newspaper Article about Cable Modem security


> I would think that anyone connected to a public network would have some
> thoughts about security. If not they will find out very quickly. its the
> same old adage "we never used to lock the doors" .
> I think there are also some advantages to a cable network "speed for one"
> also having a regular IP Im sure has its positive merits.
> I know I would gladly give up my 28.8 dial up and take my chances with
> cable. Remember if you log a hackers IP and they are on cable there is no
> question about who had that IP at the time.
> So I think these cable lans will bring on a new wave of firewalls and
> security software for the home and small business users.
> -----Original Message-----
> From: Michael Kelly <michaelkelley () home com>
> To: Eric Toll <etoll () syracusesupply com>
> Cc: firewall-wizards () nfr net <firewall-wizards () nfr net>;
> Neil.Ratzlaff () ucop edu <Neil.Ratzlaff () ucop edu>
> Date: Friday, October 29, 1999 9:39 PM
> Subject: Re: Newspaper Article about Cable Modem security
>
>
> > Eric Toll wrote:
> > > The sad part is that even if they have file and print sharing turned
> > off, you can still be hacked and or hijacked, cable modem networks are
> not
> distributed star, but more like a bus network  ( think of it like a
> river )
> and anyone can get a sniffer and "drink" packets and look for >"password"
or
> capture 40bit encryped https sessions, save them and >crack them later to
> reveal credit card numbers etc.
> > I agree with you about this. The problem I had with the article was the
> > way it was presented. "Underlying Computer Code" and all that. The
> > amount of information presented to advise people on how to secure thier
> > computers was almost non-existent.
> >
> > > Do you guys think we have kiddie scripters reading this stuff?  I'd
hate
> to think so.
> > I'd bet on it. But on the other hand, if they are just script kiddies,
> > they haven't got a clue as to what anyone is talking about.