nanog mailing list archives

Re: Cisco IOS Vulnerability

From: Daniel Karrenberg <daniel.karrenberg () ripe net>
Date: Fri, 18 Jul 2003 09:04:43 +0200


On 17.07 15:59, Andy Dills wrote:

Sendmail is open source, IOS is not.

Knowing where the problem is and knowing how to exploit it are two
entirely different situations.


You are naive: Security through obscurity has never worked.
You need secrecy if you go down this road; and that is hard to do.

We are extremely lucky that Cisco managed to keep this under wraps for more 
than two months. 

The luck will not stretch to noone having the source code to a version of
IOS with the probelm or the imagination necessary to find it without source. 

Daniel

Current thread:

Flapping (was Re: Cisco IOS Vulnerability), (continued)
- - - Flapping (was Re: Cisco IOS Vulnerability) Sean Donelan (Jul 16)
  - RE: Cisco IOS Vulnerability Mikael Abrahamsson (Jul 16)
    - Re: Cisco IOS Vulnerability Jared Mauch (Jul 16)
    - RE: Cisco IOS Vulnerability Sean Donelan (Jul 16)
    - Re: Cisco IOS Vulnerability Jeff Kell (Jul 16)
    - Re: Cisco IOS Vulnerability Jack Bates (Jul 17)
    - Re: Cisco IOS Vulnerability Andy Dills (Jul 17)
    - Re: Cisco IOS Vulnerability Joe Abley (Jul 17)
    - Re: Cisco IOS Vulnerability micah mcnelly (Jul 17)
    - Re: Cisco IOS Vulnerability Michael Painter (Jul 17)
    - Re: Cisco IOS Vulnerability Daniel Karrenberg (Jul 18)
    - Re: Cisco IOS Vulnerability joshua sahala (Jul 18)
    - Re: Cisco IOS Vulnerability Petri Helenius (Jul 18)
    - RE: Cisco IOS Vulnerability Darrell Kristof (Jul 16)
    - Re: Cisco IOS Vulnerability Valdis . Kletnieks (Jul 17)
    - Re: Cisco IOS Vulnerability Brian Wallingford (Jul 17)
    - RE: Cisco IOS Vulnerability Barry Raveendran Greene (Jul 17)
    - Re: Cisco IOS Vulnerability Petri Helenius (Jul 17)
    - RADb ? mike harrison (Jul 22)
    - Re: RADb ? Kevin Oberman (Jul 22)
    - Re: Cisco IOS Vulnerability Valdis . Kletnieks (Jul 17)

(Thread continues...)