Re: Nokia IPSO

[Stephen Perciballi <stephen.perciballi () mci com>]

What black box?

It's hardened freebsd based on intel hardware.  Essentially they are PC's
in rack mountable boxes.

Many services are started on default install which can be used for DoS
(try port scanning one).  If you have access to the nokia support site
(easy to get) you can download other software (shells, PERL, etc).

They are actually routers primarily.  The thing that actually makes these
things secure is when you install CheckPoint on them (and even that has
to be done properly).

http://www.phoneboy.com/ usually has some good stuff on it.  Otherwise
support.nokia.com is pretty up to date on vulnerabilities of their
software.


________________________________________________________________
Stephen Perciballi              phone: 1-416-216-5141
Internet Security Specialist    cell : 1-416-877-1808
MCI                             pager: sperciba-pager () ca mci com
www.mci.com/ca                  24/7 : 1-888-886-3865

On Wed, 26 Nov 2003, Sandro Littke wrote:

> On Wed, 2003-11-26 at 10:35, Frederic Charpentier wrote:
> >  hi, does anyone know a mailing list (or web site) about Nokia IPSO
> > security ?
> >
> > Fred
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
>  ^^^^^^^^^^^^^^^^
>
> Hi, you cant talk about security of a thing that is a black box actually
> :-(
>
> Sandro.
> --
> Sandro Littke <sl () estec net>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html