[Cerowrt-devel] Friends don't let friends run factory firmware
dpreed at reed.com
dpreed at reed.com
Tue Feb 18 17:43:44 EST 2014
Apropos of this topic construed broadly, just got the following in my email. I'm thinking about a MicroZed network appliance anyway, so a PMOD interface is interesting because that's the MicroZed peripheral standard. But wouldn't it be nice if one could have this kind of authentication in a router?
http://www.maximintegrated.com/app-notes/index.mvp/id/5822
It's a nice little chip, easy to interface to almost anything. Pretty easy to make a PCB that can be added to almost any commercial "home router".
On Tuesday, February 18, 2014 5:21pm, "Dave Taht" <dave.taht at gmail.com> said:
> On Tue, Feb 18, 2014 at 5:13 PM, Dave Taht <dave.taht at gmail.com> wrote:
>> While we are at it. (wobbly wednesday)
>>
>> http://www.ioactive.com/news-events/IOActive_advisory_belkinwemo_2014.html
>>
>> Don't leave home with it on.
>>
>> At least they left the signing keys for the certificate in the
>> firmware, so that bad guys can exploit it, and good guys, improve it.
>>
>>
>>
>> On Tue, Feb 18, 2014 at 5:10 PM, Rich Brown <richb.hanover at gmail.com> wrote:
>>> More excitement...
>>>
>>> https://isc.sans.edu/forums/diary/Linksys+Worm+TheMoon+Summary+What+we+know+so+far/17633
>
> I was incidentally quite surprised to see the original limited scope
> of the DNS changer worm. I didn't think we'd busted the folk involved
> in the scam soon enough, nor was I happy with the ensuing publicity,
> nor with how long it took for Paul to be able to turn off the the
> servers supplying the (4+m) busted routers with corrected data.
>
> The world has been ripe for the same attack or worse, across over half
> the home routers in the universe, as
> well as much CPE.
>
> This is in part why I'm so adamant about getting DNSSEC support "out
> there", adding sensors to cerowrt,
> improving security, doing bcp38 and source sensitive routing and the like.
>
>
>>> _______________________________________________
>>> Cerowrt-devel mailing list
>>> Cerowrt-devel at lists.bufferbloat.net
>>> https://lists.bufferbloat.net/listinfo/cerowrt-devel
>>
>>
>>
>> --
>> Dave Täht
>>
>> Fixing bufferbloat with cerowrt: http://www.teklibre.com/cerowrt/subscribe.html
>
>
>
> --
> Dave Täht
>
> Fixing bufferbloat with cerowrt: http://www.teklibre.com/cerowrt/subscribe.html
> _______________________________________________
> Cerowrt-devel mailing list
> Cerowrt-devel at lists.bufferbloat.net
> https://lists.bufferbloat.net/listinfo/cerowrt-devel
>
More information about the Cerowrt-devel
mailing list