Re: Cisco IOS Shellcode Presentation

[Jason Coombs <jasonc () science org>]

Steve Friedl wrote:
> So you're suggesting that Cisco should have adopted security by
> obscurity for its hardware design?

How about adopting an architecture that incorporates special-purpose 
security safeguards into the CPU? Routers and switches don't need to 
execute arbitrary code, Cisco knows ahead of time, before they deploy a 
product, what code that product should be allowed to execute.

Do you think there is no way in hardware to limit the code that gets 
executed? Maybe you should join the FBI.

Sincerely,

Jason Coombs
jasonc () science org
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/