nanog mailing list archives

RE: Banc of America Article

From: "Ray Burkholder" <ray () oneunified net>
Date: Sun, 26 Jan 2003 06:54:55 -0500


Actually, I think too many assumptions were made.  

Let's simplify.  

We know UUNet traffic capabilities were reduced significantly.  Uunet
has many big customers.  Other big carriers had similar affects on their
networks, probably particularly at peering points.

We know many companies use public or private VPN services from major
carriers such as these, and that both VPN types may use public internet
carriers.

I think therefore that the only true conclusion we could say is that if
BoA's traffic was not prioritized, it therefore suffered collateral
damage primarily due to traffic not being able to get through between
ATM's and the central processing center.

Ray Burkholder

-----Original Message-----
From: Alex Rubenstein [mailto:alex () nac net] 
Sent: January 25, 2003 18:45
To: nanog () nanog org
Subject: Banc of America Article

http://biz.yahoo.com/rb/030125/tech_virus_boa_1.html

Let's make the assumption that the outage of ATM's that BoA 
suffered was
caused by last nights 'SQL Slammer' virus.

The following things can then be assumed:

a) BoA's network has Microsoft SQL Servers on them.

b) BoA has not applied SP3 (available for a week) or the 
patch for this
particular problem (SQL Slammer) (available for many months).

c) somehow, this attack spawned on the public internet made 
it's way to
BoA's SQL servers, bypassing firewalls (did they have firewalls?).

Another article states, "Bank of America Corp., one of the nation's
largest banks, said many customers could not withdraw money from its
13,000 ATM machines because of technical problems caused by 
the attack. A
spokeswoman, Lisa Gagnon, said the bank restored service to nearly all
ATMs by late Saturday afternoon and that customers' money and personal
information had not been at risk."

Does anyone else, based upon the assumptions above, believe 
this statement
to be patently incorrect (specifically, the part about 'personal
information had not been at risk.') ?

I find these statement made by BoA, based upon assumptions which are
probably correct, to be very scary.

Comments?

-- Alex Rubenstein, AR97, K2AHR, alex () nac net, latency, Al Reuben --
--    Net Access Corporation, 800-NET-ME-36, http://www.nac.net   --

Current thread:

OT: Banc of America Article, (continued)
- - - OT: Banc of America Article Al Rowland (Jan 29)
    - RE: Banc of America Article Charles Sprickman (Jan 29)
    - OT: Banc of America Article Al Rowland (Jan 29)
    - Re: OT: Banc of America Article Brett Frankenberger (Jan 29)
    - Re: OT: Banc of America Article Sharif Torpis (Jan 29)
    - Re: OT: Banc of America Article David Charlap (Jan 29)
    - Re: OT: Banc of America Article Krzysztof Adamski (Jan 30)
    - Re: OT: Banc of America Article Paul Timmins (Jan 30)
    - Re: Banc of America Article David Howe (Jan 30)
    - Re: Banc of America Article Joel Baker (Jan 29)
- RE: Banc of America Article Ray Burkholder (Jan 26)
  - Re: Banc of America Article Mike Nice (Jan 26)
    - Re: Banc of America Article alex (Jan 27)
  - RE: Banc of America Article Alex Rubenstein (Jan 26)
    - Re: Banc of America Article Jack Bates (Jan 26)
  - RE: Banc of America Article alex (Jan 27)
- Re: Banc of America Article Steven M. Bellovin (Jan 26)
  - Re: Banc of America Article Mike Nice (Jan 26)
- RE: Banc of America Article Temkin, David (Jan 26)
  - RE: Banc of America Article alex (Jan 27)
- Re: Banc of America Article Roger Marquis (Jan 28)

(Thread continues...)