From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-qa0-x231.google.com (mail-qa0-x231.google.com [IPv6:2607:f8b0:400d:c00::231]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by huchra.bufferbloat.net (Postfix) with ESMTPS id 6ECA321F09E for ; Tue, 18 Feb 2014 14:21:02 -0800 (PST) Received: by mail-qa0-f49.google.com with SMTP id w8so23983781qac.22 for ; Tue, 18 Feb 2014 14:21:01 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=XO2+AL7gAlwqZqh3BSsD12wCru4HDvorQqtVXy+XoI0=; b=EXzARi7sPm61zJPVoBCJR2uDNyzys9qEsyUWfOBIsrWq3rHauk9GYEE4m4vVx8zJv+ 36wWHEDKwZKkBS09DvNaqcuxwtr7G5T4p5w05SWmdPLpyRx0C97FlxCVW+r4qsanZ4FS Kous/9K7WTPwuNFsF2YSSw2xAPtTM3QO9OlATfuWFs61cppea4I3phmnkLOkw7C5kWDT aeiPWO4Py48tV9vJ7yffSUN1f6WSW+NyaKBWZrLrBWvzUAoKNxpQj6ezGP53NQ+dub7A L2sYlvPFq01ncbw75Z8/0AeP2q8kC2BfLz6qCAsgCcwMBQNvGppq7FUbSwr/SaJKqZ8R CAaA== MIME-Version: 1.0 X-Received: by 10.229.193.136 with SMTP id du8mr46464654qcb.11.1392762061314; Tue, 18 Feb 2014 14:21:01 -0800 (PST) Received: by 10.224.88.6 with HTTP; Tue, 18 Feb 2014 14:21:01 -0800 (PST) In-Reply-To: References: Date: Tue, 18 Feb 2014 17:21:01 -0500 Message-ID: From: Dave Taht To: Rich Brown Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: cerowrt-devel Subject: Re: [Cerowrt-devel] Friends don't let friends run factory firmware X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.13 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Feb 2014 22:21:02 -0000 On Tue, Feb 18, 2014 at 5:13 PM, Dave Taht wrote: > While we are at it. (wobbly wednesday) > > http://www.ioactive.com/news-events/IOActive_advisory_belkinwemo_2014.htm= l > > Don't leave home with it on. > > At least they left the signing keys for the certificate in the > firmware, so that bad guys can exploit it, and good guys, improve it. > > > > On Tue, Feb 18, 2014 at 5:10 PM, Rich Brown wro= te: >> More excitement... >> >> https://isc.sans.edu/forums/diary/Linksys+Worm+TheMoon+Summary+What+we+k= now+so+far/17633 I was incidentally quite surprised to see the original limited scope of the DNS changer worm. I didn't think we'd busted the folk involved in the scam soon enough, nor was I happy with the ensuing publicity, nor with how long it took for Paul to be able to turn off the the servers supplying the (4+m) busted routers with corrected data. The world has been ripe for the same attack or worse, across over half the home routers in the universe, as well as much CPE. This is in part why I'm so adamant about getting DNSSEC support "out there", adding sensors to cerowrt, improving security, doing bcp38 and source sensitive routing and the like. >> _______________________________________________ >> Cerowrt-devel mailing list >> Cerowrt-devel@lists.bufferbloat.net >> https://lists.bufferbloat.net/listinfo/cerowrt-devel > > > > -- > Dave T=E4ht > > Fixing bufferbloat with cerowrt: http://www.teklibre.com/cerowrt/subscrib= e.html --=20 Dave T=E4ht Fixing bufferbloat with cerowrt: http://www.teklibre.com/cerowrt/subscribe.= html