Slashdot Mirror

← Back to Stories (view on slashdot.org)

Wired Interviews Mike Lynn

Posted by timothy on from the not-captain-sisko dept.

ndansmith writes "Wired has got an interview with Mike Lynn, who revealed a major vulnerability in Cisco IOS at Black Hat 2005 in Las Vegas, and who has subsequently become the subject of an FBI investigation. A quote from Mike Lynn: 'Cisco said, "You guys are lying. It is impossible to execute shell code on Cisco IOS." At that point (ISS) management was annoyed.... They were like, "Mike, your new research project is Cisco IOS. Go find out how to exploit bugs on Cisco IOS so we can prove these people wrong."'"

2 of 194 comments (clear)

  1. Take care getting Cisco patches - compromised! by AYeomans · · Score: 2, Interesting
    Goto http://www.cisco.com/cgi-bin/login
    Let the authentication fail and read the following:

    IMPORTANT NOTICE:
    • Cisco has determined that Cisco.com password protection has been compromised.
    • As a precautionary measure, Cisco has reset your password. To receive your new password, send a blank e-mail, from the account which you entered upon registration, to cco-locksmith@cisco.com. Account details with a new random password will be e-mailed to you.
    • If you do not receive your new password within five minutes, please contact the Technical Support Center.
    • This incident does not appear to be due to a weakness in Cisco products or technologies.
    --
    Andrew Yeomans
  2. Well, Mike's a lot more than an admin... by Svartalf · · Score: 2, Interesting

    Computer/Network Systems Engineer would be a more accurate description. He's designed his own, and the very first, wireless intrusion detection and prevention system (Intrusion prevention? Yep- AirIDS was designed to chaff and other things to make it very difficult for a snooper to obtain a solid lock on an AP's WEP key without needing WPA upgrades...). I remember having numerous conversations with him about it while we were working on projects at Coollogic when they were still just doing set-top boxes. There was a difference of opinion on several levels with some of the management and he quit (for good reason...won't go into details there) which was a disappointment to me because the management that was the problem was fired (Which would tickle him to no end, along with all the details about the same...)

    Right now, I'm one of the people waiting to line up to give the man a shiny new job- and one in the same arena that he's been working in for the past 3-4 years running. I'm just trying to find a way to reach him since all my contact means have kind of gone poof with him being dismissed from ISS as a researcher. Any of you all that know Mike personally, I'd love to get contact info from him so I can get back in touch at the very least.

    --
    I am not merely a "consumer" or a "taxpayer". I am a Citizen of the State of Texas