Random Entry: I am back
< Catechism of the Catholic Church | SSH Brute Force Attempt >

Cisco & Mike Lynn (oh and Blackhat and ISS)

There has been a lot of noise about this issue and I am not going to repeat what has been said. Instead here is a pointer to a good summary of links, Schneier's take and JOAT's disclosure point. Cisco did bad.

UPDATE I: A great interview. People don't patch Cisco you say? Hmmm. I remember asking about patching when Cisco came to our university to show off their VoIP stuff and their clueless response seemed to agree. If the new IOS architecture would be as vulnerable to exploitation as Lynn says, then he has done good work. Respect to the man for sticking by his ethics.

UPDATE II: You currently can't log into Cisco Connection Online website as their password database has been compromised. Hmmm.

Wednesday, August 3. 2005
Posted by Dominic White in Security
Comments (0) | Trackbacks (0)

Last modified on 2005-08-04 06:17

Trackbacks

Trackback specific URI for this entry

No Trackbacks

Comments

Display comments as (Linear | Threaded)

No comments

Add Comment

Name
Email
Homepage
In reply to
Comment	E-Mail addresses will not be displayed and will only be used for E-Mail notifications. To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above:
	Remember Information? Subscribe to this entry