| reply to El Quintron
Re: Security logistics said by El Quintron:I'm no security expert, but it seems to me that there's a bit of hype here.
Even with the rudimentary network knowlege that I do possess, I have to ask the following: Would a network operator (eg: Bell, VZW, AT&T) not know that information was being reported back to China? Network operators are usually pretty good at identifying traffic patterns in order manage their networks so why would this be any different?
If the hardware itself is subverted at the bare metal, then no. As Wilsdom said, the hardware can merely lie to you. If you own the hardware, you own everything, including third party software running on top.
--
Getting people to stop using windows is more or less the same as trying to get people to stop smoking tobacco products. They dont want to change; they are happy with slowly dying inside. -- munky99999 |
|
 El QuintronResident Mouth BreatherPremium
join:2008-04-28
Etobicoke, ON
kudos:2
 ·TekSavvy DSL
 ·WIND Mobile
| said by KodiacZiller:If the hardware itself is subverted at the bare metal, then no. As Wilsdom said, the hardware can merely lie to you. If you own the hardware, you own everything, including third party software running on top.
Again I'm no networking expert, but assuming you have some ZTE/Huwei radios, with a Cisco or Mikrotik backend, then even if the radio isn't reporting that it's phoning home, then the backend would still detect unknown traffic originating from the device no?
--
Support Bacteria -- It's the Only Culture Some People Have |
|
| You can hide the traffic by masking it as udp traffic bound for a spoofed address, you can also hide it as traffic encrypted and bound for say a management station that has a "updater" there are all sorts of ways to hide traffic, I have been doing security work for over 13 years now , and it never amazes me how these guys figure out ways to hide traffic, some of them I only found by being nosy and wanting to know why a link light was blinking fairly rapidly while the interface said it was only moving a small bit of data.
--
"It's always funny until someone gets hurt......and then it's absolutely friggin' hysterical!" |
|
El QuintronResident Mouth BreatherPremium
join:2008-04-28
Etobicoke, ON
kudos:2 Reviews:
·TekSavvy DSL
·WIND Mobile
| said by BosstonesOwn:You can hide the traffic by masking it as udp traffic bound for a spoofed address, you can also hide it as traffic encrypted and bound for say a management station that has a "updater" there are all sorts of ways to hide traffic,
Fair enough, how does the UDP traffic get around the router seeing as it originates behind the network firewall (eg: carrer class routers) ?
--
Support Bacteria -- It's the Only Culture Some People Have |
|
