Slashdot Mirror

← Back to Stories (view on slashdot.org)

India Bars ZTE, Huawei, Others From Sensitive Government Projects

Posted by Unknown on from the do-it-yourself dept.

hypnosec writes "The Indian Government has decided it won't be using telecom equipment from international vendors, and has barred all such foreign companies from participating in the US$3.8 billion National Optical Fiber Network (NOFN) project — a project aimed at bringing high-speed Internet connectivity to the rural areas of India. The DoT has decided that it will be going ahead with 100 per cent domestic sourcing and has released a list of certified GPON suppliers. This decision comes after the research wing of the ministry, C-DoT, advised the telecom department to bar Chinese companies like ZTE and Huawei, keeping in line with a similar decision by the U.S. In an internal memo, the research body advised the department that both these Chinese companies are a security threat to the telecom world."

1 of 160 comments (clear)

  1. http://cryptome.org/2013/01/tails-exploit.htm by Anonymous Coward · · Score: -1, Troll

    http://cryptome.org/2013/01/tails-exploit.htm

    21 January 2013

    Tails Linux version 0.16 - Firewall Disabling Script Waits For Exploitation

    A sends:

    Tails Linux version 0.16 - Firewall Disabling Script Waits For Exploitation

    "If youâ(TM)re running Tails version 0.15 or 0.16, please locate and delete the following file each session: /usr/local/sbin/do_not_ever_run_me

    The file, if ran with correct permissions, will completely disable your firewall! So much for the idea that Tails always routes everything through Tor! Where this news has been posted and comments allowed, mysterious âoeanonymousâ users have expressed their low brow intelligence leaving comments such as, âoeWell you need to be root to run it so it doesnâ(TM)t matter, if you have root you can do anything!â

    First of all, a file called âoedo_not_ever_run_meâ shouldnâ(TM)t be on a Linux system. If it should NEVER BE RUN, and that means by anyone, root or user, local or remote, it SHOULD NOT BE INCLUDED IN THE DISTRIBUTION!

    Any current or future exploit which targets this file will âoedrop the shieldsâ for the Tails user.

    Perhaps Tails itself in its next version, 0.17, should be nicknamed, âoedo_not_ever_run_meâ.

    Another questionable decision by the Tails developers is to place the following line within the torrc file (located at /etc/tor/torrc):

    ## We donâ(TM)t care if applications do their own DNS lookups since our Tor

    ## enforcement will handle it safely.

    WarnUnsafeSocks 0

    Oh, really? We donâ(TM)t care? Who is we? Itâ(TM)s not me! As the man page for Tor states, this is set to 1 by default, yet Tails sets it for 0! So if something âoeleaksâ, you will never know it? Each session, delete this line or comment it out so the default is 1 like it should be for a Tor session.

    What else can we find in this anonymously developed distribution? Iâ(TM)m glad Iâ(TM)m not driving a car with software made by this group of developers."

    aka: Tails 0.16 lower shields

    src: anonymous

    reply: no, throwaway acct