[AusNOG] Oh this is a good laugh.
Mark Caetano
ausnog at dominium.com.au
Tue Jun 22 15:07:06 EST 2010
On 22/06/2010, at 3:03 PM, Dobbins, Roland wrote:
>
I'm sure that after this, there will be a wave of 'spoofers' to fool
these systems into thinking they're all locked down, either installed
by the owner themself or by some haxor as part of a botnet script. -
It just gets better and better :)
> One can't trust end-nodes to self-report, anyways - the miscreants
> will compromise them anyways, and then send back the signals the
> management system expects to hear. This is why 'NAC' is completely
> useless.
>
> The only way to determine whether a given host is compromised/
> misbehaving is observe its behavior from *outside* said host - flow
> telemetry, DNS queries, et. al.
>
> -----------------------------------------------------------------------
> Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
>
> Injustice is relatively easy to bear; what stings is justice.
>
> -- H.L. Mencken
>
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20100622/73716d6a/attachment.html>
More information about the AusNOG
mailing list