Full Disclosure mailing list archives
Re: XKeyscore sees 'nearly EVERYTHING you do
From: jk3380 () naida org
Date: Tue, 13 Aug 2013 10:54:17 +0200
On Sat, 10 Aug 2013 22:16:15 -0400, Pedro Luis Karrasquillo said:NSA picks this up remotely via a very secret SNMP command.So has anybody ever spotted this SNMP command in a tcpdump? Found the code that handles it in net-snmp? Cisco IOS? JunOS?
Working for a mobile operator I have some minimal experience. Police or whoever needs to or wants to tap info uses a Corba based client for the purpose. On the SGSNs reside the Corba server side of LI. Traffic goes out via ipsec vpn. There are docs from 3gpp to cover the architecture but not really enough to reverse engineer. LI is a licensed feature. Where I work only SGSNs have the license not GGSNs The LI MIbs quoted in the thread are probably useless since they will only provide counters to "things" not the "things" //Chinelo _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: XKeyscore sees 'nearly EVERYTHING you do Pedro Luis Karrasquillo (Aug 11)
- Re: XKeyscore sees 'nearly EVERYTHING you do Valdis . Kletnieks (Aug 11)
- Re: XKeyscore sees 'nearly EVERYTHING you do Justin Elze (Aug 11)
- Re: XKeyscore sees 'nearly EVERYTHING you do jk3380 (Aug 13)
- Re: XKeyscore sees 'nearly EVERYTHING you do Michal Purzynski (Aug 11)
- Re: XKeyscore sees 'nearly EVERYTHING you do Grandma Eubanks (Aug 11)
- <Possible follow-ups>
- Re: XKeyscore sees 'nearly EVERYTHING you do peter_toyota (Aug 11)
- Re: XKeyscore sees 'nearly EVERYTHING you do Valdis . Kletnieks (Aug 11)