Netgear Routers DoS UWisc Time Server 447
numatrix writes "For the last few months, hundreds of thousands of netgear routers being sold had hardcoded values in their firmware for ntp synchronization, causing a major denial of service to the University of Wisconsin's network before it was filtered and eventually tracked down. Highlights how not to code embedded devices." A really excellent write-up of the incident.
and now... (Score:5, Funny)
oh, and fp.
Obligatory Scooby Doo reference (Score:5, Funny)
Poor uWisc (Score:5, Funny)
Now the
Now... (Score:2, Funny)
I did that to myself once (Score:5, Funny)
If they did it to my NTP server... (Score:5, Funny)
Hasn't /. learned? (Score:5, Funny)
In other news at the University... (Score:5, Funny)
Delicious irony (Score:5, Funny)
Indeed (Score:5, Funny)
"/* Huge Bodge */"
"/* Kludge */"
"/* Magic numbers are cool */"
blaster (Score:2, Funny)
Ouch! (Score:3, Funny)
Re:Err why ? (Score:1, Funny)
And then, on friday august 22 2003.. (Score:5, Funny)
Simple Fix (Score:5, Funny)
After 6 seconds, the netgear will crash and burn as a result of the Y2K38 problem and the requests will be no more.
Re:Indeed (Score:4, Funny)
/* Too drunk -- debug later */
Re:It's not about just embedded devices... (Score:5, Funny)
Poor UWisc (Score:5, Funny)
Then the e-mail server (from the helpdesk requests)
Then the webserver (from
What next?
Re:and now... (Score:2, Funny)
Re:Now did NetGear get permission (Score:3, Funny)
Didn't you mean to say stratum?
Unless NTP is really a cover up to a top secret government information collection service =)
Where's my tin foil hat?
Re:It's not about just embedded devices... (Score:5, Funny)
oh, and we laughed long and hard at the guy who put down:
Re:Our usage graph...You Jerks! (Score:5, Funny)
Go ahead, give us another, I dare ya!
What (Score:4, Funny)
DoS (Score:2, Funny)
Re:And then, on friday august 22 2003.. (Score:2, Funny)
Re:How do you get the router fixed? (Score:2, Funny)
2) How many people with a home router (internet savvy or not) spend all that much time reading the logs, let alone making sure the time stamps are valid?
I know you probably do, but I dont. Because I'm just a simple caveman home networker, and your logs and timestamps frighten and confuse me.
hey, now... (Score:2, Funny)
honestly...
ed
Re:Poor UWisc (Score:3, Funny)
Re:Our usage graph...You Jerks! (Score:5, Funny)
ShortSpecialBus, eh? ;-)
Re:If they did it to my NTP server... (Score:3, Funny)
Nah, that's not a problem (Score:3, Funny)
The programmer would catch on pretty quick when it didn't compile. Now, if he declared it as a float, on the other hand...