[AusNOG] Huawei Enterprise kit

Jacob Bisby ausnog at jdmnet.com.au
Mon Jul 7 16:44:29 EST 2014


My experience with Huawei was not entirely pleasant - just beware they have
a 'volume' requirement, so if you're not pushing x amount of sales per year
of their equipment then they don't want to know you.

- Jacob Bisby

-----Original Message-----
From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Steve
Phillips
Sent: Monday, 7 July 2014 12:44 PM
To: ausnog at lists.ausnog.net
Subject: Re: [AusNOG] Huawei Enterprise kit

Here is a link to the Defcon XX talk that Paul referenced with the pdf link.

https://www.youtube.com/watch?v=w-K1YpJp07s

A lot of the hype over Huawei seemed to stem from this talk and then got
blown completely out of proportion by the media and turned into something
where the Chinese government is trying to haxx us.

A sane rundown on the entire thing was typed up by Mark Piper, a security
researcher in NZ and published to a list populated by a bunch of like minded
individuals.

You can see his mail here: http://nibblet.focb.co.nz/pipes-huawei.txt
(The list has no public archives)

It's a very complete run down and addresses the OPs question.

HTH,

--
Steve.


On 7/07/2014 11:08 am, Jonathan Thorpe wrote:
> Hi All,
>
> There's a lot of hysteria with Huawei, but in essence, I think a lot of
> it is quite unfounded.
>
> Considering two out of three mobile carriers in this country rely almost
> exclusively on Huawei equipment, perceived quality control issues don't
> appear to be real enough to give them a bad name.
>
> Huawei have a bit of unfavourable history behind them, but there appears
> to be a lot of protectionism from the US as well. On the one hand, the
> NSA praises the Australian government for not considering them for the
> NBN, on the other, it's later discovered that the NSA specifically
> targeted their equipment to create backdoors for themselves.
>
> It's a false sense of security to assume any vendor is immune to what
> Huawei or the Chinese government is accused of doing.
>
> I should disclose that I have worked for a software vendor that had me
> working from Huawei's HQ for a number of months. If quality control of
> their own products is anything like I had to endure with the vendor I
> was working for, they're certainly on the right path.
>
> Kind Regards,
>
> Jonathan
>
> *From:*AusNOG [mailto:ausnog-bounces at lists.ausnog.net] *On Behalf Of
> *Paul Gear
> *Sent:* Monday, 7 July 2014 10:48 AM
> *To:* ausnog at lists.ausnog.net
> *Subject:* Re: [AusNOG] Huawei Enterprise kit
>
> Hi Chris,
>
> Personally, I'm more worried about their software quality control,
> especially on the security side.  Have a listen to
> http://risky.biz/RB250 - their security flaws sound like the types
> affecting home NASs and one-man PHP coding shops, not enterprise-grade
> suppliers.
>
> That podcast was nearly two years ago.  Personally, I'm skeptical about
> their ability to turn around such a poor security culture in two years.
> Your opinion may vary.
>
> Regards,
> Paul
>
> P.S. Note that HP Networking's Comware gear (i.e. not the ProCurve
> range) contains H3C (Huawei/3Com partnership) roots.  I'm personally a
> lot more comfortable with that than with Huawei on their own.  At least
> they have established security teams and defined processes for issuing
> advisories.
>
> On 07/07/2014 08:55 AM, Chris Gibbs wrote:
>
>     Hey all,
>
>     After recently listening to a packet pusher podcast on Huawei
>     (sponsored by Huawei), I thought it might be a good topic to drag up
>     again.
>
http://packetpushers.net/show-193-huawei-cloudengine-cloudfabric-sponsored/
>
>
>     I know ASIO recommended that NBNCo ban Huawei from bidding. Maybe
>     justifiable for the core/PE but does the same ban hold true for
>     customer and enterprise kit? Not being 'privy' to ASIO
>     recommendations I'm not sure either way.
>
>     Being government, I think we can request from the ASD generalised
>     information but their current Evaluated products list doesn't
>     contain any products from Huawei.
>     http://www.asd.gov.au/infosec/epl/index.php
>
>     In the CPE and enterprise markets, what are people experience and
>     general opinion of their routing and switching products?
>
>     We are currently an all Cisco shop but due to pressures on our
>     budget have been reviewing this decision and testing out kit from
>     Juniper and HP. Just wondering if we should be testing out Huawei
>     kit too.
>
>     Cheers,
>
>      
>
>     <http://www.gosford.nsw.gov.au>
>
>              
>
>     Chris Gibbs
>     Network and Security Engineer | Information Management & Technology
>     Gosford City Council
>     (PO Box 21)
>     Gosford NSW 2250
>     P  (02) 43258888
>     M  0408 222 496
>     E Chris.Gibbs at gosford.nsw.gov.au
<mailto:Chris.Gibbs at gosford.nsw.gov.au>
>
>      
>
>     Gosford Connect eNewsletter
>     <http://confirmsubscription.com/h/i/A752C35C6D10F1BB>
>
>              
>
>     Gosford Council Facebook <http://www.facebook.com/GosfordCityCouncil>
>
>              
>
>     Gosford Council Twitter <http://twitter.com/gosford_council>
>
>              
>
>     gosford.nsw.gov.au <http://www.gosford.nsw.gov.au>
>
>     Think Before You Print <http://thinkbeforeprinting.org/>
>
>
------------------------------------------------------------------------
>
>     The information contained in this email may be confidential. You
>     should only disclose,re-transmit,copy,distribute, act in reliance on
>     or commercialise the information if you are authorised to do so.
>     Gosford City Council does not represent, warrant or guarantee that
>     the communication is free of errors, virus or interference.
>
>     Gosford City Council complies with the Privacy and Personal
>     Information Protection Act (1998). See Council's Privacy Statement
>     <http://www.gosford.nsw.gov.au.au/council/privacy.html>
>
>
>
>
>     _______________________________________________
>
>     AusNOG mailing list
>
>     AusNOG at lists.ausnog.net  <mailto:AusNOG at lists.ausnog.net>
>
>     http://lists.ausnog.net/mailman/listinfo/ausnog
>
>
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>

_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net
http://lists.ausnog.net/mailman/listinfo/ausnog



__________ Information from ESET NOD32 Antivirus, version of virus signature
database 10055 (20140707) __________

The message was checked by ESET NOD32 Antivirus.

http://www.eset.com




More information about the AusNOG mailing list