Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] back to high value targets

from [coderman] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] back to high value targets
Date: Thu, 31 Jan 2008 14:43:12 -0800 
On Jan 31, 2008 12:35 PM, gmaggro <gmaggro@rogers.com> wrote:

...
And a quip from the article that just tickles me pink: "...The outage,
which is being blamed on a fault in a single undersea cable..."


two cables:
FLAG Europe-Asia and SeaMeWe-4



This is all assuming that the story is true; that it is one cable, and
not a cover for something else. Glomar Explorer and K-129 anyone? Maybe
they're just patching in another Echelon node, hehe :)


you'd be surprised how often trawlers, boat anchors, cable scavengers
(yes, really!) and even marine life sever under sea cables... or maybe
you wouldn't.

no need to attribute to skilled malice (NSA taps from the undersea bay
of the Jimmy Carter sub fiber splicing deck) what is easily
accomplished via sheer stupidity or carelessness or simple bad luck.



Doesn't really matter how or why the damage occured, the point is that
fairly massive single points of failure clearly exist.


rarely single points, but pairs or small groups.  the moment you get a
good pair of failures in a critical link, you often see cascading
failures, and it turns into a a cyclone of crap hitting fans.. whee



What does matter
is how similar results could be replicated by a loose coalition of
like-minded individuals using highly insecure media.


"i wuz just fishin' fur dungeness offisah, didnt mean no harmz to dem cablz!!"



I seriously wonder what the bandwidth of those are.


DWDM can get pretty fat.  the economic incentives to squeeze as much
bandwidth as possible through every single strand makes these the
phattest of the phat pipes, in general.



On a somewhat related note, it's always been my guess that very little
net traffic, relatively speaking, is carried over satellites due to the
distance and lag issues. Is this a foolish notion?


i don't know figures (anyone?) but this tends to be the case.  sats
are great for broadcast relay, but suck for low latency bi-directional
comms.  however, they do make useful backups.  how else are you going
to get data back and forth across the planet when those fibers get
sliced?

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-disclosure] [USN-573-1] PulseAudio vulnerability, Jamie Strandboge
Next by Date:  Re: [Full-disclosure] back to high value targets, coderman
Previous by Thread:  Re: [Full-disclosure] back to high value targets, gmaggro
Next by Thread:  Re: [Full-disclosure] back to high value targets, coderman
Indexes:  [Date] [Thread] [Top] [All Lists]