[NANOG] IOS rootkits

Paul Ferguson fergdawg at netzero.net
Sat May 17 04:00:00 UTC 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -- Dragos Ruiu <dr at kyx.net> wrote:

>The question this presentation begs for me... is how many of the folks  
>on this list do integrity checking on their routers?
>
>You can no longer say this isn't necessary :-).
>
>I know FX and a few others are working on toolsets for this...
>
>I'll probably have other comments after I see the presentation.
>This development has all sort of implications for binary signing  
>requirements, etc...

Yep -- I'd say just wait for the presentation (assuming Cisco
doesn't go after this guy like they did Mike Lynn) and then
determine the level of seriousness.

It would appear to have people very nervous, however. Including
Cisco. It will be interesting to see what develops.

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFILlgzq1pz9mNUZTMRAtmoAKC3bQLSqJzFDZklPMfdnkBX7fyccwCeN5mc
K1QQ9JnTqLmSfcNuj5JZ6Z8=
=W5F0
-----END PGP SIGNATURE-----


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/





More information about the NANOG mailing list