nanog mailing list archives
Re: huawei
From: Nick Hilliard <nick () foobar org>
Date: Thu, 13 Jun 2013 18:56:19 +0100
On 13/06/2013 18:42, Leo Bicknell wrote:
A hard coded backdoor password and username.
e.g.: http://www.phenoelit.org/dpl/dpl.html Or alternatively if you want access to any huawei device with software older than about a year ago: http://phenoelit.org/stuff/Huawei_DEFCON_XX.pdf
A sequence of port-knocking that enables ssh on an alternate port with no ACL.
e.g.
http://krebsonsecurity.com/2013/01/backdoors-found-in-barracuda-networks-gear/
There's no need to resort to malice to explain these problems when alternative explanations exist. Nick
Current thread:
- RE: huawei, (continued)
- RE: huawei chris burri (Jun 16)
- Re: huawei Phil Fagan (Jun 16)
- Re: huawei Warren Bailey (Jun 16)
- Re: huawei Scott Helms (Jun 18)
- Re: huawei Eugen Leitl (Jun 15)
- Re: huawei Scott Helms (Jun 15)
- Re: huawei Jimmy Hess (Jun 15)
- Re: huawei Scott Helms (Jun 15)
- Re: huawei Phil Fagan (Jun 13)
- Re: huawei Nick Hilliard (Jun 13)
- Re: huawei Scott Helms (Jun 13)
- Re: huawei Jimmy Hess (Jun 13)
- Re: huawei Mark Seiden (Jun 13)