Vulnerability Development mailing list archives
Re: news story and router passwords
From: Richard Johnson <rdump () RIVER COM>
Date: Sat, 14 Oct 2000 18:49:40 -0600
At 11:10 -0600 on 10/12/2000, Vachon, Scott wrote:
Frankly speaking I'd suppose that they just did not back up their >config:)(because it looks like they even did not use access-lists etc.)From reading the article is sounds as if a simple script kiddie found aneasy and unprotected target. Where these fools too simple-minded to physically remove the stricken (and apparently blocking) gear from the network and rework it ?
This is apparently more difficult with an Ascend router that uses SNMP only for configuration (no console access?), and apparently has no 'lobotomy' switch for at least temporarily resetting to known default password or configuration. Still, 11 days to arrange replacement hardware is a bit severe for a provider only half an hour away from the Denver metro area. At least now they know they can hit a number of locals up for emergency loaners in the future. Richard
Current thread:
- Re: news story and router passwords Vachon, Scott (Oct 12)
- Re: news story and router passwords Richard Johnson (Oct 14)
- Re: news story and router passwords Mark Teicher (Oct 15)
- Re: news story and router passwords Talisker (Oct 16)
- Re: news story and router passwords Mark Teicher (Oct 16)
- Re: news story and router passwords Mark Teicher (Oct 15)
- Re: news story and router passwords Richard Johnson (Oct 14)
- <Possible follow-ups>
- Re: news story and router passwords none none (Oct 12)
- Re: news story and router passwords Mr Rufus Faloofus (Oct 12)
- Re: news story and router passwords Vitaly McLain (Oct 13)
- Re: news story and router passwords bugtraq (Oct 13)
- Re: news story and router passwords antirez (Oct 14)
- Re: news story and router passwords Bluefish (P.Magnusson) (Oct 14)
- Re: news story and router passwords bug tracker (Oct 14)