Re: [j-nsp] juniper hack news

2015-12-28 Thread Hugo Slabbert
On Sun 2015-Dec-27 03:46:48 +, Scott Granados wrote: So I wonder about your statements about the governments. I would tend to agree and trust me there’s little about the scumbags in Washington (or insert your nations capitol here) that would surprise me but I’m not convinced. There’s b

Re: [j-nsp] juniper hack news

2015-12-26 Thread Scott Granados
So I wonder about your statements about the governments. I would tend to agree and trust me there’s little about the scumbags in Washington (or insert your nations capitol here) that would surprise me but I’m not convinced. There’s been a ton of bellyaching at least in the US and probably glob

Re: [j-nsp] juniper hack news

2015-12-26 Thread Hugo Slabbert
What he said ;-) -- Hugo h...@slabnet.com: email, xmpp/jabber also on Signal From: Aaron Dewell -- Sent: 2015-12-26 - 15:08 > > While that may be completely correct (while not completely provable, it is > entirely reasonable to assume it), the immediate question was whether this > p

Re: [j-nsp] juniper hack news

2015-12-26 Thread Aaron Dewell
While that may be completely correct (while not completely provable, it is entirely reasonable to assume it), the immediate question was whether this particular vulnerability affected JunOS also, or only ScreenOS. The answer to that more narrow question is that it only affects ScreenOS. I thin

Re: [j-nsp] juniper hack news

2015-12-26 Thread Chris Cappuccio
Hugo Slabbert [h...@slabnet.com] wrote: > > Am I missing something that indicates this is known to affect Junos as well? > I just gave you a link to a formal NSA/GCHQ "TOP SECRET" documentation -- from 2011 -- which says they are DOING IT. It only takes NSA ~90 days to develop a new vulnerability

Re: [j-nsp] juniper hack news

2015-12-26 Thread Hugo Slabbert
On Sat 2015-Dec-26 07:58:47 -0800, Chris Cappuccio wrote: Hugo Slabbert [h...@slabnet.com] wrote: >Does this affect any other juniper gear ? Not as of this moment, no. It's limited to ScreenOS. Sorry, this is false. It's clear in the documentation that JunOS was targeted as well. Not b

Re: [j-nsp] juniper hack news

2015-12-26 Thread Chris Cappuccio
Hugo Slabbert [h...@slabnet.com] wrote: > >Does this affect any other juniper gear ? > > Not as of this moment, no. It's limited to ScreenOS. > > -- > Hugo > > h...@slabnet.com: email, xmpp/jabber > PGP fingerprint (B178313E): > CF18 15FA 9FE4 0CD1 2319 1D77 9AB1 0FFD B178 313E > > (also on S

Re: [j-nsp] juniper hack news

2015-12-26 Thread Chris Cappuccio
Hugo Slabbert [h...@slabnet.com] wrote: > >Does this affect any other juniper gear ? > > Not as of this moment, no. It's limited to ScreenOS. > > -- > Hugo > > h...@slabnet.com: email, xmpp/jabber > PGP fingerprint (B178313E): > CF18 15FA 9FE4 0CD1 2319 1D77 9AB1 0FFD B178 313E > > (also on S

Re: [j-nsp] juniper hack news

2015-12-26 Thread Chris Cappuccio
Hugo Slabbert [h...@slabnet.com] wrote: > >Does this affect any other juniper gear ? > > Not as of this moment, no. It's limited to ScreenOS. > Sorry, this is false. It's clear in the documentation that JunOS was targeted as well. ___ juniper-nsp mail

Re: [j-nsp] juniper hack news

2015-12-21 Thread Hugo Slabbert
Does this affect any other juniper gear ? Not as of this moment, no. It's limited to ScreenOS. -- Hugo h...@slabnet.com: email, xmpp/jabber PGP fingerprint (B178313E): CF18 15FA 9FE4 0CD1 2319 1D77 9AB1 0FFD B178 313E (also on Signal) On Mon 2015-Dec-21 10:45:04 -0600, Aaron wrote: Y'all

[j-nsp] juniper hack news

2015-12-21 Thread Aaron
Y'all know anything about this ? Folks in my organization are concerned. It seems to be that it only affects certain versions of Juniper Netscreen ScreenOS. Does this affect any other juniper gear ? http://kb.juniper.net/InfoCenter/index?page=content