Re: [NANOG] IOS rootkits

[A.L.M.Buxey () lboro ac uk]

Hi,

> How can you say the cyber world is unlikely to end when Cisco is the
> most widely used router on the internet today? Everyone uses Cisco,
> all the ISP's and everyone.

I tend to ignore your comments, however this is just ridiculous.
The internet is based on CISCO?  yes. sure. I'm sure that Juniper
would be very surprised to find out that all the ISPs..and everyone..uses
Cisco as their router platform. Juniper...and Foundry and Extreme to a
lesser extent.. might want to know why the major ISPs etc bought 
their kit if all they'll do with it is shove it into a store room
or use it for a development network.  Subtle hint: Cisco isnt the
only player in the major ISP market. 

IOS issues have been reported for years. a rootkit isnt the threat - 
remote vulnerability to get that rootkit on in the first place is
a threat.   Your issue with the information being release at this
security conference? the fact that people paid to learn this information?
Or the release of the information? If the info was released for free
to the world then you'd have no issue because you dont want to pay
for some info? or you dont want full disclosure and rely on security
through obscurity? but surely that goes against what eg this list stands for.

Bring on the issues. It'll ensure that Cisco sort their issues out. if they 
dont then those other vendors will be happy to supply to companies who
are properly concerned about such threats.  Such issues are what
make full disclosure a reasonable practice. 

alan

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/