Yea, but if you know you are talking to a goober first you help them
find the CSU/DSU and lead them step by step through the process of
putting the CSU/DSU in loopback. Or you could (as the service provider)
purchase a test set that will loop the modem remotely. That's why I
like the plug the phone line in approach. I haven't run across anyone
yet that can't do that right!
> -----Original Message-----
> From: Rabid Wombat [SMTP:wombat @
mcfeely .
bsfs .
org]
> Sent: Saturday, September 13, 1997 5:40 PM
> To: Michael W. Chalkley
> Cc: Paul D. Robertson; firewalls @
GreatCircle .
COM
> Subject: Re: Giant security hole in ISP provided routers?!?!?!
>
>
>
> On Tue, 2 Sep 1997, Michael W. Chalkley wrote:
>
> >
> >
> > ------------------------
> > From: "Paul D. Robertson" <proberts @
clark .
net>
> > Subject: Re: Giant security hole in ISP provided routers?!?!?!
> > Date: Tue, 2 Sep 1997 21:40:17 -0400 (EDT)
> > To: "Michael W. Chalkley" <mikech @
avana .
net>
> > Cc: firewalls @
GreatCircle .
COM
> >
> >
> > > On Tue, 2 Sep 1997, Michael W. Chalkley wrote:
> > >
> > <Snip!>
> > > specified in the service contract. If you can't trust them to
> hold the
> > > password, I'm not sure how you can trust them to transit your
> traffic.
> >
> > I disagree with this statement. Lots of networks carry my traffic
> but none of
> > them have my passwords (I hope). An ISP doesn't need the password to
> my router
> > to carry my traffic effectively.
> >
>
> No, the ISP doesn't need your password to carry your traffic if YOU
> know
> what you're doing.
>
> OTOH, it's always good for a chuckle when you're troubleshooing a
> leased
> line and tell some goober to put their CSU into loopback mode and then
> the
> phone line you're talking to them on suddenly goes dead. Customers
> like
> these NEED out-of-band management by their ISP, and should add a
> firewall
> behind their front door router for security.
|
|
