Remind me why I bother with information security when industry and the government seems to want to ensure things can be pwn3d as easily as possible... On 7/29/05, Fergie (Paul Ferguson) <fergdawg@netzero.net> wrote:
Now the FBI is investigating Lynn for criminal wrongdoing?
Kim Zetter writes in Wired News this morning that:
[snip]
The FBI is investigating a computer security researcher for criminal conduct after he revealed that critical systems supporting the internet and many networks have a serious software flaw that could allow someone to crash or take control of the routers.
[and]
The FBI declined to discuss the case.
[snip]
http://www.wired.com/news/politics/0,1283,68356,00.html
- ferg
Over on Boing Boing:
[snip]
Here's a PDF that purports to be Michael Lynn's presentation on Cisco's critical vulnerabilities ("The Holy Grail: Cisco IOS Shellcode And Exploitation Techniques"), delivered at last week's Black Hat conference. Lynn's employer, ISS, wouldn't let him deliver the talk (they'd been leant on by Cisco), so Lynn quit his job, walked onstage and delivered it anyway. (See yesterday's post and Scheneier's take for more). 1.9MB PDF Link
[snip]
http://www.boingboing.net/2005/07/29/michael_lynns_contro.html
Thanks, j