nanog mailing list archives

Re: Operational Impact of CA-2002-03 ?

From: "Joel Baker" <lucifer () lightbearer com>
Date: Thu, 14 Feb 2002 13:41:18 -0700


On Thu, Feb 14, 2002 at 02:00:44AM -0500, Frank B. Scalzo wrote:



Has anyone seen any discernable operational impact from CA-2002-03? Things
like: increase in SNMP probes, increase in bgp churn due to outside networks
being affected, customer complaints, increase in number of customer flaps,
anyone willing to admit to being directly impacted, anyone willing to admit
surviving an attempt, does anyone have any evidence of an actual exploit,
any evidence that people wearing the wrong color hats are using this or
trying to?


#include <stddisclaimer>

We saw a few boxes which appeared to have been compromised in the past day
or two, and which were running SNMPd. On the other hand, they were also
running other potentially dangerous network interfaces as well, so the
timing may well be coincidental.
-- 
***************************************************************************
Joel Baker                           System Administrator - lightbearer.com
lucifer () lightbearer com              http://users.lightbearer.com/lucifer/

Current thread:

Operational Impact of CA-2002-03 ? Frank B. Scalzo (Feb 13)
- Re: Operational Impact of CA-2002-03 ? Jared Mauch (Feb 14)
  - Re: Operational Impact of CA-2002-03 ? Brian Wallingford (Feb 14)
- Re: Operational Impact of CA-2002-03 ? Chad Oleary (Feb 14)
- Re: Operational Impact of CA-2002-03 ? Sean Donelan (Feb 14)
- Re: Operational Impact of CA-2002-03 ? Joel Baker (Feb 14)