Maybe it's just me, but I consider a 100x cost increase significant. And I don't buy your assertion that you can do real-time, line-rate scanning and filtering with a $5k box. Otherwise routers wouldn't need ASICs.
On Thu, Dec 12, 2013 at 1:24 PM, Nicholas Weaver <[email protected]>wrote: > > On Dec 12, 2013, at 10:20 AM, Richard Barnes <[email protected]> wrote: > > Using packet injection on the WiFi at the local starbucks... > > > > I would note that attack at this level does not really qualify as > "pervasive". And that there are sizeable technical differences between > doing injection on a WiFi link and doing injection in, say, an OC-192. So > we should not regard passive and active attack as equivalent. > > > > --Richard > > There is no difference between the two scenarios, just the cost of the > hardware: a $35 Raspberry Pi vs a $5000 multicore box running Bro. The > technology, techniques, and attacker abilities are the same. > > And dollars to doughnuts says France can use this within their boarders on > OC-192 links. > > -- > Nicholas Weaver it is a tale, told by an idiot, > [email protected] full of sound and fury, > 510-666-2903 .signifying nothing > PGP: http://www1.icsi.berkeley.edu/~nweaver/data/nweaver_pub.asc > >
_______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
