On Sat, 6 Aug 2005, Tony Li wrote: > > > Practically, what this means is that the government will be asking > > broadband providers > > - as well as companies that manufacture devices used for broadband > > communications – to build insecure backdoors into their networks, > > imperiling the privacy and security of citizens on the Internet. > > > I'm sorry, but this is simply an unsupportable statement. What is > required of routers is that the provider be able to configure the device > to make copies of certain packets to a monitoring port. Assuming that > the monitoring port is duly managed, how does this qualify as "insecure"? >
hopefully sticking some header on that packet to determine input interface/lsp as well. hopefully also not dumping to a physical interface, but to a 'vpn' interface so truckrolls to kalamazoo don't have to happen each time 'elterrorista' moves from internet cafe' to internet cafe' please :) no real 'security' implications in the copy though, sure. (assuming appropriate controls on config changes exist, and controls on the exit point/storage of the copied data.