Computerworld continues its reporting of Cisco’s source code leak, which has many ISPs and major companies re-examining their access control lists.
The problem, apparently, is that 800MB of Cisco source code for the Internetworking Operating System 12.3 and 12.3T systems was found on a Russian website. The Russians took the site down when requested by Cisco, but the feeling is that the bad guys have this code and are exploring it for weaknesses.
Is this a serious threat? Hard to tell. On the one hand, exploits have been found against various operating systems without having the source-code handy. On the other hand, having the source might make it easier to turn a router-crashing exploit into one that might result in a router compromise.
Personally, I think that the real risk in having the source code out is a legal one. With the code out, some enterprising hacker might discover that Cisco’s IOS actually has some copylefted code in it. If that code is present, then it would mean that all of IOS is contaminated and needs to be published as open source… I’m not saying that this has happened, but you gotta let a guy have his dreams…
The hype around DeepMind’s new AI model misses what’s actually cool about it
Some worry that the chatter about these tools is doing the whole field a disservice.
These materials were meant to revolutionize the solar industry. Why hasn’t it happened?
Perovskites are promising, but real-world conditions have held them back.
Why China is still obsessed with disinfecting everything
Most public health bodies dealing with covid have long since moved on from the idea of surface transmission. China’s didn’t—and that helps it control the narrative about the disease’s origins and danger.
A quick guide to the most important AI law you’ve never heard of
The European Union is planning new legislation aimed at curbing the worst harms associated with artificial intelligence.
Get the latest updates from
MIT Technology Review
Discover special offers, top stories, upcoming events, and more.