Slashdot Mirror
Possible Cisco Source Code Theft
OmegaBlac writes "According to Ars Technica, a Russian security site is claiming that Cisco's corporate network was comprimised and about 800MB of Cisco's source code for IOS Operating System version 12.3 was stolen. I guess Cisco forgot to implement their own Self Defending Network solutions."
This did actually happen. A friend in an IRC channel I frequent was pasting large portions of it to show off.
:(
I can't help much see a nearby future full of Cisco-powered site takeovers
Vonal Declosion
CiSCO IOS? .
.
.
SecurityLab, 13 2004 CISCO IOS 12.3, 12.3t, CISCO. 800
, - Cisco System. Cisco System
franz #darknet@EFnet IRC ( 2.5 )
100 ipv6_tcp.c ipv6_discovery_test.c.
Hope that helps!
Yours Sincerely, Michael.
I use windows RRAS as my router and not the damned (potentially) insecure Cisco kit ;-)
Darl??
"Hey! Unless this is a nude love-in, get the hell off my property!!"
... that their remote access software had a default username/password built in that couldn't be disabled. A high-level Ciso executive has threatened to sue the software providers for including such a stupid 'feature' in their product
"Time to go unplug your internet connection until 12.4 is released ..."
If you leave your mailing address I'll send you a postcard when it does.
"Instead they probably have experts pooring over ios every day."
Unfortunately those experts are figuring out how to draw the release structure diagram and name the branches. I don't think cisco engineers have time to work on new code, there's too much old code to figure out.
Seriously, A friend of mine, in an icq conversation told me it wasn't true. Plus my mom said so as well.
ah, wait a sec (while i fetch me textbook of /. answers).. yes... i see, "it was not stolen... it was copy-right in-fringe-ment".. how was that? :)
This is my Sig, this is my Gun. One is for Slashdot and one is for Fun.
How about, " The next Slashdot story will be ready soon, but readers of ArsTechnica can beat the rush and see it early!"
try { do() || do_not(); } catch (JediException err) { yoda(err); }
"I guess Cisco forgot to implement their own Self Defending Network solutions"
No they did implement it. But when it found out that it was outnumbered by the hackers, the self-surrender module(also know as the french module) went into effect.
Seriously, A friend of mine, in an icq conversation told me it wasn't true. Plus my mom said so as well.
Translation: Accept information only from Official Sources(tm).
Any reports, of any event, not vetted by Your Official Corporate Public Relations Officer(tm) isn't real and has no validity.
Do not accept word of mouth. Healthy kepticism is not sufficient (for the facts may speak for themselves and undermine Our Official Position(tm)); you are to ignore any anectdotes, any word of mouth reporting, completely and utterly.
Indeed, you shall respond to any unofficial information with disparagement and hostility, as is your duty as a drone Consumer(tm).
Accept the Party Line. It is the Truth(tm), all else is Heresy.
Thank you.
Your Cisco Security.
("Stooges R Us")
The Future of Human Evolution: Autonomy
I'm not trying to break the encryption. I'm just looking at the ciphertext, and reading my own stuff into it. :)
Get your own free personal location tracker
Did somebody grep for "Juniper coders are weenies?"
bash$