More here: http://blogs.iss.net/archive/blackhatlitalk.html
Gadi.
--
Gadi Evron,
g...@linuxbox.org.
Blog: http://gevron.livejournal.com/
"That peer-review is the basic purpose of my Blackhat talk and the
associated paper. I plan to review Cisco’s architecture for lawful
intercept and explain the approach a bad guy would take to getting
access without authorization. I’ll identify several aspects of the
design and implementation of the Lawful Intercept (LI) and Simple
Network Management Protocol Version 3 (SNMPv3) protocols that can be
exploited to gain access to the interface, and provide recommendations
for mitigating those vulnerabilities in design, implementation, and
deployment."
- lawful intercept/IOS at BlackHat DC, bypassing and reco... Gadi Evron
- Re: lawful intercept/IOS at BlackHat DC, bypassing... Christopher Morrow
- Re: lawful intercept/IOS at BlackHat DC, bypas... Christopher Morrow
- Re: lawful intercept/IOS at BlackHat DC, bypas... Tony Varriale
- Re: lawful intercept/IOS at BlackHat DC, bypas... Crist Clark
- Re: lawful intercept/IOS at BlackHat DC, b... Christopher Morrow
- Re: lawful intercept/IOS at BlackHat D... Steven Bellovin
- Re: lawful intercept/IOS at Black... Christopher Morrow
- Re: lawful intercept/IOS at B... Steven Bellovin
- Re: lawful intercept/IOS ... Marcus Reid
- Re: lawful intercept/IOS at BlackHat DC, bypassing... Jorge Amodio
