| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 13 Aug 2013 10:54:17 +0200 From: jk3380@...da.org To: "full-disclosure@...ts.grok.org.uk" <full-disclosure@...ts.grok.org.uk> Subject: Re: XKeyscore sees 'nearly EVERYTHING you do > On Sat, 10 Aug 2013 22:16:15 -0400, Pedro Luis Karrasquillo said: > >> NSA picks this up remotely via a very secret SNMP command. > > So has anybody ever spotted this SNMP command in a tcpdump? > Found the code that handles it in net-snmp? Cisco IOS? JunOS? Working for a mobile operator I have some minimal experience. Police or whoever needs to or wants to tap info uses a Corba based client for the purpose. On the SGSNs reside the Corba server side of LI. Traffic goes out via ipsec vpn. There are docs from 3gpp to cover the architecture but not really enough to reverse engineer. LI is a licensed feature. Where I work only SGSNs have the license not GGSNs The LI MIbs quoted in the thread are probably useless since they will only provide counters to "things" not the "things" //Chinelo _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists