[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Cisco IOS Shellcode Presentation

Steve Friedl wrote: 
So you're suggesting that Cisco should have adopted security by
obscurity for its hardware design?

How about adopting an architecture that incorporates special-purpose security safeguards into the CPU? Routers and switches don't need to execute arbitrary code, Cisco knows ahead of time, before they deploy a product, what code that product should be allowed to execute.

Do you think there is no way in hardware to limit the code that gets executed? Maybe you should join the FBI.

Sincerely,

Jason Coombs
jasonc@xxxxxxxxxxx
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/