Microsoft NLB turns switch into a hub

I have to imagine this affects more that just Cisco switches.  More proof that network engineering is an afterthought at Microsoft.  It's hard to fathom that they engineered their "load balancing" this way on purpose.

http://blogs.nil.com/blog/2009/07/30/microsoft-network-load-balancing-nlb-functionality-does-not-play-nicely-with-cisco-switches/

Network World "hype machine" presses on

At Blackhat 2009, Felix Lindner (F/X) delivered a quality presentation on "Router Exploitation".  This is a continuation of a theme with F/X as he has long focused on IOS vulnerabilities with the Internet Routing Protocol Attack Suite (IRPAS) being one such example.

Network World treats this information as if there has been new ground broken in the area of IOS exploitation which is not accurate.  However, stating that these "attacks" are nothing new and that they require a high level of sophistication to accomplish, does not advance Network World's action line of the sky is falling and that IOS is unsafe to use.

h/t Ivan Pepelnjak:  Cisco IOS hints and tricks: Blackhat 2009 Router Exploitation presentation

Network World "hype machine" presses on

At Blackhat 2009, Felix Lindner (FX) delivered a quality presentation on "Router Exploitation".  This is a continuation of a theme with FX as he has long focused on IOS vulnerabilities with the Internet Routing Protocol Attack Suite (IRPAS) being one such example.

Network World treats this information as if there has been new ground broken in the area of IOS exploitation which is not accurate.  However, stating that these "attacks" are nothing new and that they require a high level of sophistication to accomplish, does not advance Network World's action line of the sky is falling and that IOS is unsafe to use.

h/t Ivan Pepelnjak:  Cisco IOS hints and tricks: Blackhat 2009 Router Exploitation presentation

New SSL attacks

Moxie Marlinspike releases new version of sslsniff.  This tool incorporates the capability for null-prefix attacks which allows for silent MITM attack on SSL.  As researchers continue to uncover flaws in the inner works of SSL, it may be time to rethink or even reconsider using it for applications like enterprise remote access VPN.

What do Reagan and C.S. Lewis have in common?

After all the increasing meddling by the government in our lives and the subsequent decline in our liberties, I am reminded of the quote by Ronald Reagan and I'll paraphrase. The nine most terrifying words in the English language are I'm from the government and I am here to help.

I then came across the following quote from the brilliant C.S. Lewis which encapsulates the Reagan thought quite nicely.

Of all tyrannies, a tyranny sincerely exercised for the good of its victims may be the most oppressive. It would be better to live under robber barons than under omnipotent moral busybodies. The robber baron's cruelty may sometimes sleep, his cupidity may at some point be satiated; but those who torment us for our own good will torment us without end for they do so with the approval of their own conscience.
C. S. Lewis
English essayist & juvenile novelist (1898 - 1963)

The Battle of the Bulge began 64 years ago today

Here's to the "Battered Bastards of the 101st."



Incredible photos of The Bulge can be found at Jules Crittenden's blog

In memory of MA2 Michael A. Monsoor, USN

Two years ago today Michael Monsoor made the ultimate sacrifice for his comrades and his country. I and many other Americans honor your memory. May you rest in peace.

In the worst of conditions the legacy of my teammates steadies my resolve and silently guides my every deed. I will not fail.

- From the U.S. Navy Seals Ethos


http://www.navy.mil/moh/Monsoor/

http://www.youtube.com/watch?v=CfK2BQCIIes

http://www.youtube.com/watch?v=FfBb-Jlgn1U