back to article Sinister secret backdoor found in networking gear perfect for government espionage: The Chinese are – oh no, wait, it's Cisco again

Right on cue, Cisco on Wednesday patched a security vulnerability in some of its network switches that can be exploited by miscreants to commandeer the IT equipment and spy on people. This comes immediately after panic this week over a hidden Telnet-based diagnostic interface was found in Huawei gateways. Although that …

  1. Blockchain commentard Silver badge
    Big Brother

    Psychic or what? Didn't I mention this just a few days ago?

    1. Anonymous Coward
      Anonymous Coward

      Didn't I mention this just a few days ago?

      Hang on. Just let me check your system logs and backups, and I'll let you know.

      1. ForthIsNotDead
        Pint

        Re: Didn't I mention this just a few days ago?

        ^^^^^^^ Brilliant! Beer!

        1. bigtreeman

          Re: Didn't I mention this just a few days ago?

          Sorry, Forth died years ago when it's branch fell from the programming tree on Dr Dobb's Journal.

          1. Jamie Jones Silver badge
            Facepalm

            Re: Didn't I mention this just a few days ago?

            Oops. i read it as "for this, not dead"

            still, better than expertsexchange....

            1. Ken Shabby Bronze badge
              Facepalm

              Re: Didn't I mention this just a few days ago?

              Or PowerGen Italia...

  2. Anonymous Coward
    Anonymous Coward

    As said before: trust the facts. And they do not favour the Americans.

    1. BigBear

      "they do not favour the Americans"

      @Anonymous Coward

      "they do not favour the Americans"

      Perhaps I'm just stupid (and I'm setting myself up). How do "they do not favour the Americans"?

      Are we still talking about networking gear?

      Remember, Huawei stubbornly refused to remove their telnet backdoor until Vodafone made a huge stink about it. Cisco issued fixes for their problems immediately.

      I'm willing to assume that Cisco does not intend their equipment to have backdoors. I expect, given its Chinese government connections, that Huawei does intend its equipment to have backdoors.

      Even if Cisco equipment has NSA-supported backdoors, that's the United States NSA, not the Peoples' Republic of China — a major threat to, if not enemy of, the United States. I don't like having either scarfing up our data. But the former is far better than the latter. Encryption is the way to go.

      1. The_Idiot

        Re: "they do not favour the Americans"

        "Even if Cisco equipment has NSA-supported backdoors, that's the United States NSA, not the Peoples' Republic of China — a major threat to, if not enemy of, the United States."

        Right. Because the United States are well known not to be a threat to any of their 'allies' under the current (or potentially previous) regimes. They don 't use economic action as a form of political coercion, don't act against those (European or otherwise) allies, don't try to enforce their good at the expense of others. Got it, sir. Right. If it's good for the US, it's good for - um, the US. And everybody else should accept that as 'good enough', yes?

        Sigh.

        1. BigBear

          Re: "they do not favour the Americans"

          I'm not favoring US coercion or any other unseemly behavior, and specifically not NSA backdoors, which I clearly stated. Perhaps I'm naive, but I doubt that Cisco installs backdoors at the NSA's request. Nevertheless, better the NSA than the PRC. The PRC is more evil than you might imagine — far more so than the US.

          And yes, I am speaking for what benefits the US, specifically. Our allies can always build their own networking equipment. If that's not economical for them, they're still better off with Cisco than Huawei.

          1. Anonymous Coward
            Anonymous Coward

            Re: "they do not favour the Americans"

            they're still better off with Cisco than Huawei

            Based on what criteria? It has been universally acknowledged that Huawei's 5G gear is streets ahead of what Cisco has to offer. It appears the real US request is "believe our unsubstantiated BS and please don't buy anything until we have caught up" - which is pretty much where we started this discussion.

            The problem y'all have over in the Ustated Knights (to quote an old Belgian comedian) is that you are too used to people believing your BS that you're not able to handle it when someone calls you on it. Instead of allowing people to gather their own facts (like the current competition has done), you double down on the BS and add some threats, and that is pissing people off even more than Trump already has. The Fart of the Deal may list that as a negotiating tactic, but it doesn't exactly build long term relationships.

            It's time you guys wake up to the fact that good trade relies on trust, and trust is FAR easier to harm than it is to build.

          2. Two Lips
            FAIL

            Re: "they do not favour the Americans"

            "Nevertheless, better the NSA than the PRC."

            You must be joking. Have you heard of Edward Snowden? Have you heard of Noam Chomsky? We don't see China meddling militarily, economically, politically in more than 200 countries affairs for more than half a century. No, only one country is guilty of that.

            "they're still better off with Cisco than Huawei."

            Get off your patriotic bike Tex. Huawei are streets ahead of ALL the competition, Americans are not even in the race. Huawei will be the networking monopoly globally within the next ten years. No wonder all Americans are shitting themselves. it has nothing to do with espionage either.

  3. Evil Auditor Silver badge

    I consider myself not too gullible regarding conspiracy crap but I'm more than willing to have a go.

    rather odd to see the US administration lean on its allies to ditch Huawei gear apparently out of fears of Chinese snooping via backdoors

    There's nothing odd. It's not that the others' backdoors are so bad. The true evil is that our (i.e. US origin) backdoors aren't disseminated as is intended.

    1. Anonymous Coward
      Anonymous Coward

      ....not used to El-Reg irony and sarcasm?

  4. Crypto Monad

    Keys

    So not only did they leave an SSH public key authorized on the box, they also left the corresponding private key there to be extracted? Great job Cisco.

    1. Anonymous Coward
      Anonymous Coward

      Re: Keys

      Yeah, that's who we should trust with our communication security instead of the evil (but clearly a tad more competent) Chinese.

      Not bloody likely. The Americans have been a risk since the 1940s when they learned from the Brits just how valuable it was to intercept communication.

      1. Aodhhan

        Re: Keys

        Hey genius...

        American's were intercepting communications and conducting counter-intelligence during the American Revolutionary war. If you need a history lesson, this is when the USA handily beat Great Britain.

        One of the most well known stories was following and capturing Benedict Arnold.

        Intercepting communications and manipulating communications is one of the reasons the USA was able to kick the crap out of an overwhelming force--which had better training and more resources.

        There is plenty of books and other resources outlining George Washington's deployment of spies, both locally and in England.

        What's interesting is your display in ignorance and lack of gratitude for a country which saved the UK in the 1940s. The USA sacrificed more than 400,000 lives, and provided nearly a billion pounds in cash to assist in rebuilding so you can be a complete idiot today.

        Yet, I'm willing to bet, you get upset if someone doesn't notice and/or appreciate you at your job.

        1. John Stirling

          Re: Keys

          Your history as stated is a little lopsided - but that's fair enough - you appear to be from the USA, and it isn's far off. We do definitely owe you historic thanks for being on our side for most of the wars of the 20th Century. I like to think we've stood by you during yours. You have a fine document forming your country, one of the best ever written. In many respects yours is a wonderful country. But the plutocracy is working hard to take it over, and I do not understand why the overwhelming majority of ordinary Americans appear to be complicit in being sold down the river by dishonest ruthless bastards who are not loyal to them.

          Those criticising 'America' are mostly not criticising America, but the plutocratic bastards trying to steal it from you.

          1. Claverhouse Silver badge

            Re: Keys

            Those criticising 'America' are mostly not criticising America, but the plutocratic bastards trying to steal it from you.

            Nah, I'm criticising America.

            It's an evil mess and the new USSR. And the Constitution is a pile of crap.

            1. MrDamage

              Re: Keys

              The Constitution isn't a pile of crap, but it is written on paper, and as we saw from the latest BOFH, paper is good at dealing with "the back end". Which is exactly what the plutocracy is doing with it.

            2. n10cities

              Re: Keys

              And Trump and his ilk are making it worse....

              Plus the idiots over here keep voting against their best interests due to the incessant pandering to the gun lovers and zenophobic right-wing nut jobs....

            3. TomG

              Re: Keys

              Disagree with your statement about our constitution. It seems to work rather well, as long as Democrats don't mess with it.

              1. Anonymous Coward
                Anonymous Coward

                Re: Keys

                Have you heard of "amendments"?

                Anyway, it's the republicans who piss all over the constitution, as you well know.

          2. Ima Ballsy
            Pint

            Re: Keys

            Thank you John Stirling

            Have one on me today ...

          3. Anonymous Coward
            Anonymous Coward

            Re: Keys

            >But the plutocracy is working hard to take it over

            Technically the plutocracy is working hard to take it back again - the Senate was never conceived by the Founding Fathers as democratic - it's only been an elected legislative chamber since the early 20th century.

            >.... and I do not understand why the overwhelming majority of ordinary Americans

            https://www.youtube.com/watch?v=BxeZbuTCcMY&t=1447s

          4. Valheru

            Re: Keys

            The majority of Americans are ignorant not complicit. We were already sold down the river by the supreme court in 2010, Citizens United v. FEC, which was the tipping point. Our current POTUS represents the protest vote fed up with the Corptocracy form of government we have now.

        2. Anonymous Coward
          Anonymous Coward

          Re: Keys

          "What's interesting is your display in ignorance and lack of gratitude for a country which saved the UK in the 1940s. The USA sacrificed more than 400,000 lives, and provided nearly a billion pounds in cash to assist in rebuilding so you can be a complete idiot today."

          mmm, I think you need to read more history. and no the fucking americans did not win the war it was a group effort of a lot of countries, it's just that for some reason you lot think you did.

          You only started helping after pearl harbour, before you didn't give a shit.

          and we fucking paid it all back with interest (http://news.bbc.co.uk/1/hi/uk/6215847.stm).

          not forgetting we fucking gave you the computer and rockets and jet engines. (mainly due to our useless politicians being fucking stupid!)

          1. Gene Cash Silver badge

            Re: Keys

            > mmm, I think you need to read more history

            In American school (at least 40 years ago) history stops at the Revolutionary war, and did a shit job of that. It's even worse now, AFAICT.

            There's almost no mention of anything European. I found out Rome invaded Britain only from reading I did myself. And despite being personally interested in WW-II, I didn't find out the shocking amount of Soviet casualties until 5-6 years ago.

            1. Lars Silver badge
              Happy

              Re: Keys

              @Gene Cash

              You might like "Oliver Stones Untold History of the United States" as he speaks about that same experience of history teaching in the US. Of course there are those who don't like the way he looks under the rug at times, too.

            2. CrazyOldCatMan Silver badge

              Re: Keys

              I found out Rome invaded Britain only from reading I did myself

              Pah! They did nothing for us!

              Apart from roads. And aqueducts. Oh, and a standardised currency and weights. And red wine.

              the shocking amount of Soviet casualties

              To be fair, quite a few of those were done by the Soviets themselves with their combat tactics.. And shooting their own troops.

              1. Jeffrey Nonken Silver badge

                Re: Keys

                "Pah! They did nothing for us!

                "Apart from roads. And aqueducts. Oh, and a standardised currency and weights. And red wine."

                And Hadrian's Wall.

                It worked for the Romans, it'll work for the US!

                1. Jamie Jones Silver badge
                  Coat

                  Re: Keys

                  "Hey there good chap. We need a wall in the North of the Country to keep out those darn Hadrians. What should we call it

                  Toodle-pip.

            3. BigBear

              Re: Keys

              @Gene Cash

              I assume that you're referring to your mandatory US History class which, by definition, would not include anything European. It's very unfortunate that yours was so limited. I graduated from high school 46 years ago and was fortunate enough to attend a well-funded public high school. Our US History class started several centuries before our Revolutionary War but, unfortunately, reached only to the start of WW II before the school year was over.

              At that time, our school did not offer any world or European history classes, but that was pretty typical. My parents both lived through the depression and WW II, so I've spent considerable time learning about WW II on my own — it's truly fascinating and gut-wrenching.

          2. ST Silver badge

            Re: Keys

            > You only started helping after pearl harbour, before you didn't give a shit.

            We didn't give a shit because we can't be held responsible for cleaning up after every single periodic bout of Euro-Idiocy. Read: idiotic Euro-Wars that serve no purpose other than genociding your own civilian population.

            If Indiana went to war with Wisconsin because their respective governors didn't like each other, you wouldn't give a shit either.

            1. Androgynous Cow Herd

              Re: Keys

              My money is on Wisconsin.

              1. CrazyOldCatMan Silver badge

                Re: Keys

                My money is on Wisconsin

                Cheese-powered tanks?

            2. DavCrav Silver badge

              Re: Keys

              Why don't you fuck off out of Yemen then?

              1. ST Silver badge
                Mushroom

                Re: Keys

                > Why don't you fuck off out of Yemen then?

                And how exactly is it any of your business what we do in Yemen? Don't you have a Brexit to figure out?

                1. DavCrav Silver badge

                  Re: Keys

                  "And how exactly is it any of your business what we do in Yemen?"

                  That isn't even an argument. You're just a massive moron/troll.

                  International conflicts are necessarily of international interest. Even national conflicts that cause mass violations of human rights are of international concern.

                  1. ST Silver badge
                    FAIL

                    Re: Keys

                    > You're just a massive moron/troll.

                    Awesome.

                    Other than ad-hominem attacks and knee-jerk reactions based on unfiltered impulses, is there anything of value that you can possibly add to any discussion?

                    What does the US presence in Yemen have anything to do with backdoors in Cisco routers, and how is this relevant to the UK and their decision to allow Huawei kit on their 5G networks?

                    1. Anonymous Coward
                      Anonymous Coward

                      Re: Keys

                      There you go again, throwing around insults and crying like a baby when people respond in kind. It seems to be a common theme of yours. You must be a Trump supporter.

                      Please leave. You're giving our American friends here a bad reputation.

                      1. ST Silver badge
                        Devil

                        Re: Keys

                        > throwing around insults and crying like a baby

                        I have not thrown around any insults directed at anyone, and I'm not crying. Incidentally, I've been called quite a few adjectives that I would never have used myself. But that's OK, I can deal with it.

                        And I'm quite entertained by the sub-basement level of debating that some of the participants here engage in.

                        > Please leave.

                        Sez the very brave Anonymous Coward.

                        I ain't going anywhere, pal.

                        1. Geoffrey W Silver badge

                          Re: Keys

                          OHHH! Goody! Here's another one to add to my list of Americans to entertain myself with on the weekend. Bombastic Bob, Big John, ST,...hmmm...you really need a better nick. ST doesn't conjure up Yosemite Sam like the others do. Come on dude, you can do better than this. You haven't mentioned the second amendment yet.

                        2. sed gawk Bronze badge
                          Trollface

                          Re: Please stay

                          You make my banal contributions look truly inspired.

            3. southen bastard

              Re: Keys

              bring it on , nuke those mussorie bastards

          3. Lara1984

            Re: Keys

            You must be Irish judging by your humour, your love for the Americans and the amount of F-Words you use. :) I am so amused - keep writing.

          4. HieronymusBloggs
            Headmaster

            Re: Keys

            "fucking gave you the computer and rockets and jet engines"

            The Chinese are generally regarded as the ones who fucking gave the world rockets, back in the 13th century.

            (Not to mention that much of modern rocketry is based on the work of former Nazis).

            1. ST Silver badge
              Devil

              Re: Keys

              > The Chinese are generally regarded as the ones who fucking gave the world rockets, back in the 13th century.

              I don't recall the Chinese sending rockets in space or landing on the Moon in the 13th Century, but maybe I missed it. Do you have a reference?

              Perhaps you are confusing rockets with fireworks.

              > [ ... ] much of modern rocketry is based on the work of former Nazis.

              So the Nazis got their rockets from the 13th Century Chinese?

              1. HieronymusBloggs

                Re: Keys

                "I don't recall the Chinese sending rockets in space or landing on the Moon in the 13th Century, but maybe I missed it. Do you have a reference?"

                "So the Nazis got their rockets from the 13th Century Chinese?"

                At it again ST? Carry on.

                1. ST Silver badge
                  Devil

                  Re: Keys

                  > Carry on.

                  I am. Why won't you provide a reference about the 13th Century Chinese rockets?

                  1. HieronymusBloggs

                    Re: Keys

                    "Why won't you provide a reference about the 13th Century Chinese rockets?"

                    I assumed you knew how to use Google. My apologies.

                    https://web.archive.org/web/20090709042712/http://history.msfc.nasa.gov/rocketry/tl1.html

                    1. ST Silver badge

                      Re: Keys

                      Looks like an arrow with gunpowder to me. Which is precisely how it is described.

              2. Anonymous Coward
                Anonymous Coward

                Re: Keys

                Von Braun gave the US all the rocket IP he got out of slave labour in Europe, guidance systems, rocket engines you name it.

                So I guess yes, it did came from Europe

                Anonymous cos it Fryday and I don't care, where's me jacket?

                1. Sgt_Oddball Silver badge

                  Re: Keys

                  And the Scottish gave Von Braun the idea... multi stage at that.

          5. Lars Silver badge
            WTF?

            Re: Keys

            "we fucking gave you the computer and rockets and jet engines".

            What, no reaction to rubbish like that.

          6. Sgt_Oddball Silver badge

            Re: Keys

            And the nuclear bomb...and super sonic aircraft... The list goes on

        3. ThadiasVonBasterd

          Re: Keys

          if anyone "saved" anyone during WW2 it was russia, Berlin fell to them, not to america. you know that really famous picture of the Reichstagg being taken? notice how its a hammer and sickle on the flag, not the stars and stripes.

          1. Francis Boyle Silver badge

            Re: Keys

            Just don't mention the Ribbentrop Pact.

            1. Jamie Jones Silver badge
              Trollface

              Re: Keys

              "the Ribbentrop Pact."

        4. sed gawk Bronze badge

          Re: Keys

          The country that saved us was Russia, the US joined in after the fact, and was well paid for it's help.

          If you're going to correct history, try to do it correctly https://www.independent.co.uk/news/world/the-soviet-union-helped-save-the-world-from-hitler-a7020926.html

          1. Steve Davies 3 Silver badge

            Re: Keys

            And the turning point of the war on the Eastern Front was the Battle of Kursk. The Russians were given detailed info on the German battle plan by the Brits who were reading the German Lorenz messages almost in real time by then.

        5. andy 103
          Mushroom

          Re: Keys

          "for a country which saved the UK in the 1940s"

          Literally the only people who come out with this utter utter bullshit are Americans - how surprising.

          It's the ultimate display of stupidity, which has unfortunately been written in to countless films, books and so on years later as well.

          WW2 was a group effort involving different countries. No country saved another country, and even as someone in Britain I despise that line about Britain saving France, as if literally everyone there did fuck all.

          No one specific country or individual has ever won a war. Stop being so fucking narrow minded.

          1. KillStuffMount

            Re: Keys

            Well, there are the "Two world wars and one world cup" brigade who seem to consider having their skull cracked by another nation's riot police a badge of honour.

          2. Youngone Silver badge

            Re: Keys

            ...which has unfortunately been written in to countless films, books and so on years later as well.

            That's because the US has the best propaganda humanity has ever devised.

            1. TomG

              Re: Keys

              Nice to see you admit the USA is best at something.

            2. Anonymous Coward
              Anonymous Coward

              Re: Keys

              > That's because the US has the best propaganda humanity has ever devised.

              British understatement? You do yourselves a disservice.

              https://www.theguardian.com/uk/2006/aug/19/military.secondworldwar

              > "Stephenson called his methods "political warfare", but the remarkable fact about BSC was that no one had ever tried to achieve such a level of "spin", as we would call it today, on such a vast and pervasive scale in another country. The aim was to change the minds of an entire population: to make the people of America think that joining the war in Europe was a "good thing" and thereby free Roosevelt to act without fear of censure from Congress or at the polls in an election."

              As a neutral observer, I always find this puts an interesting spin on the "Great and wonderful US comes in to save the day" story... There was no good will from the country at all. They had to be tricked into it.

              1. Lars Silver badge
                Happy

                Re: Keys

                "They had to be tricked into it."

                Well. the British took their time too, to be tricked into it, all while Hitler had started his game. And when Hitler declared war on the USA and started to torpedo ships I doubt any tricks were needed anymore.

                But the enthusiasm to go and fight yet another war in Europe wasn't that high among Americans before that and Pearl Harbor.

                Too bad there was more enthusiasm both in the US and Britain regarding Iraq, not that anybody was asked about it.

          3. CrazyOldCatMan Silver badge

            Re: Keys

            despise that line about Britain saving France

            I do like Churchills' line about "the biggest cross I have to carry is the Cross of Lorraine". To say that he and De Gaulle didn't get on is an understatement - probably because they were too similar.

        6. Anonymous Coward
          Anonymous Coward

          Re: Keys

          provided nearly a billion pounds in cash to assist in rebuilding so you can be a complete idiot today.

          Ah yes, I was wondering why we only managed to repay all of it around 2010. Not so generous and magnanimous after all then. So, you're essentially stating that their spying is acceptable because at some point they did a mercenary job around here (which, by the way did not actually help as much as the Soviets - just in case you want to compare the number of lives lost)?

          Interesting reasoning, though. Does that mean that any visit of a SWAT unit in the US also installs monitoring, or is that now taken care of by Google Home and Amazon Alexa?

          Enquiring minds want to know.

          1. ST Silver badge

            Re: Keys

            > Enquiring minds want to know.

            - The UK defaulted on its inter-allied debts to the US in 1934. Yup, we - the big bad US lost money. And we didn't even complain about it that much. What's a few beelion (in today's money) between friends.

            - The UK defaulted on WWI bonds as well - the British War Loan. The coupon was cut to 3.5% from 5%. Sir Neville Chamberlain chalked it up to patriotism. Oddly, in other parts of the world it's called a default. A lot of people lost money.

            - After WWII, the UK had to repay its debts to Canada as well. You owed them money too. The last UK payment on its Canadian debt was made in 2006.

            1. CrazyOldCatMan Silver badge

              Re: Keys

              the big bad US lost money

              Given the massive amount of intellectual property that they stole during the Victorian era in order to quickly build their native industry, lets just call it licensing fees, much overdue..

            2. Anonymous Coward
              Anonymous Coward

              Re: Keys

              - The UK defaulted on its inter-allied debts to the US in 1934. Yup, we - the big bad US lost money. And we didn't even complain about it that much. What's a few beelion (in today's money) between friends.

              Wow. We did a Trump before Trump? Interesting :)

        7. DavCrav Silver badge

          Re: Keys

          "If you need a history lesson, this is when the USA handily beat Great Britain."

          Interesting that you got a shoeing for everything else but not this lie.

          Look it up. Britain by most standards won the American Revolutionary War. a global conflict between the British and French/Spanish/Dutch Empires, with a side event in the US. Britain lost some bits of the US, but gained India.

          So congratulations: the Spanish, French and Dutch and US forces manage to beat Britain in one part of the world. Well done.

        8. Symon Silver badge
          Pint

          Re: Keys

          "during the American Revolutionary war"

          Just remember, until you won that war, you were still British! You didn't wannabe, but you were.

          You also had some considerable assistance from both the Spanish and the French Empires. Whatever, we showed them at Trafalgar, just a few years before we came and burnt down the White House. Anyway, it was all a long time ago, and we're all friends now! We even made a special cake to celebrate.

          https://www.bbc.co.uk/news/world-us-canada-28929626

          Cheers ---->

          1. Loatesy

            Re: Keys

            This is grossly off-topic. However, for what its worth the American War of Independence wasn't strictly speaking a war, it was an insurrection. No war was declared as it was British citizenry fighting British government edicts.

            There is a reason why the first American 'government' was called The Continental Congress.

            The sad truth is the British Government of the day just didn't take the issue seriously enough, as they were also busy fighting Napoleon. Pretty much the same reason why Churchill gave immediate succour to the Soviet Union in 1941; "If Herr Hitler invaded hell itself I would at least give a favourable reference to the Devil in This House", and Roosevelt committed to a Germany-first policy.

            If only we knew then what we know now, how different would history be? Its so easy for those using hindsight to justify the past while using today's standards of behaviour to judge the losers.

            PS Churchill was right, BTW, but only just!

        9. Commentator

          Re: Keys

          Hey genius?

          George Washington lost more battles than he won, and if it hadn't been for the Prussians and the French - Baron von Steuben and Lafayette - you'd still be speaking English.

          Oh, and the Lend Lease loan was paid back in 2006 - as you are counting.

          Have a nice day.

        10. CrazyOldCatMan Silver badge

          Re: Keys

          this is when the USA handily beat Great Britain

          With a very large amount of assistance from the French (I find most US people are ignorant of that fact).

          country which saved the UK in the 1940s

          What - you mean the Soviet Union? Once Hitler decided to do a Napoleon v2 he was always going to lose. Or do you mean by providing equipment under Lend Lease? The Lend Lease that we only finished paying for recently? Sure, the US helped, but we paid through the nose for it.

          The USA sacrificed more than 400,000 lives

          And how many of those were in the Pacific Theatre? Yes, the US assisted in the European Theatre but only with great reluctance and long, long after the major risk of invasion had passed.

          The US was certainly of great assistance - but the Allies would have eventually won without them since Germany was incredibly resource-constrained and couldn't have sustained the war long-term. Victory would have taken a great deal longer though and so lives were saved.

          1. BigBear

            Re: Keys

            @CrazyOldCatMan

            "the Allies would have eventually won without them since Germany was incredibly resource-constrained and couldn't have sustained the war long-term"

            Much of the reason for Germany's resource constraints was the strategic bombing of the Romanian oil fields and the German ball-bearing factories that only USAF long-range bombers could reach. Furthermore, while the USSR was like an unstoppable tank that may have been able to roll over Germany — even without US help, I believe that in such a case, the Soviets might well have kept rolling right through Europe as well, as the "spoils of war". (Probably would have left Britain alone, however.)

            That would hardly be "winning" WW II. The allies needed the US to ensure that Europe remained free from the Nazis and the USSR. Probably the stupidest, most arrogant decision Hitler ever made was to invade the USSR, turning that prodigious, relentless war machine into its enemy.

            While the US populace is embarrassingly ignorant in its widespread belief that the US "won" WW II in Europe. I disagree that the USSR "won" it either (or you Europeans wouldn't have liked the results). The war would have taken far longer, both Germany and the Soviets were working on atomic weapons — no one knows what would have happened had the US not entered the European theatre.

            The US contributed vast amounts of cash, engineering, and manufacturing capacity to build equipment at an unprecedented rate; the British contributed unequalled intelligence, code-breaking, radar, and world-class deception techniques. Both contributed brilliant generals to plan and coordinate battle plans. France and other occupied countries contributed critical intelligence and brave resistance fighters who sabotaged German equipment and critical infrastructure. The USSR contributed its own large manufacturing capacity and seemingly endless population of soldiers willing to sacrifice for the homeland. Blood is not all that counts, however. Every country contributed in important ways. The key countries were each critically important.

            Had the USSR remained a German ally, the allies could not have prevailed. Thank goodness that Hitler was a madman.

            On an earlier topic: The US and Soviet troops arrived at the outskirts of Berlin roughly simultaneously. The USSR was understandably eager to seek revenge and happily sacrifice its men to capture the city. The US was all too willing to stand by and let the Soviets do the dirty work, then negotiate our way into getting more than 50% of Berlin as Western territory.

            While the Soviets were engaged in savage street-by-street battles in Berlin, the US was rounding up German scientists and engineers and offering them safe passage to the US, easy permanent resident status, government jobs, etc. It was brilliant, as you Brits, would say.

        11. Jamie Jones Silver badge

          Re: Keys

          In the context of the whole story, I read his mention of the Brits snooping as a critical thing.

          But even if your take was right, it's hardly a big issue... Don't equate critisisms of your administration from outsiders as criticisms of your mom.

          Feel free to criticise all the bullshit that goes on in the UK, and even, maybe, get a bit of history wrong.

          Even if we don't agree, I promise we won't jump down your throat out of insecurity, nor come out with likes such as "if it wasn't for us, you'd all be speaking Spanish" etc., or state that yoy only joined the war after Pearl Harbour. No, that sort of petty shite is bollocks.

        12. Jeffrey Nonken Silver badge

          Re: Keys

          "...this is when the USA handily beat Great Britain."

          I'm not a great student of history, being as how I'm the product of a US public education system, so I might be wrong about this -- but wasn't England a bit distracted by France at the time?

          [edit] Yeah, I see a number of people have already pointed this out. Ah well, late to the party as always.

        13. Anonymous Coward
          Anonymous Coward

          Re: Keys

          Um, I think some past employers of mine might dispute this by a few hundred years or so - and that’s just in the English speaking sphere. Ol’Julius the Caesar had a bit of an interest in the technique too and if you think he was the first then your education is even more lacking than we thought.

          And in case you missed out on the whole reality thing - hah, what am I saying, you’re American - that ‘revolution’ was an illegal and treasonous usurpation of legitimate authority by a bunch of slave owning plutocrats interested mainly in being more bloatedly plutocratic. The same interest group was responsible for the subsequent civil unpleasantness but that time they didn’t enjoy quite the same result.

          1. Anonymous Coward
            Anonymous Coward

            Re: Keys

            I think that before roughly the 1700s there was no such thing as a USA, so that argument suffers on pure factual grounds.

            That said, true, there was a great amount of interest in intercept before, but it's only been since WW II that the systematic efforts to do so were dramatically ramped up. I suspect this had to do with (a) the discovery of the methods developed at Bletchley Park which were rather effective, (b) the ability to disguise that encrypted (then Enigma) traffic wasn't as secure, but let that illusion stand and (c) the conflict with the Soviets which speeding things up a bit more and led to ECHELON in the 1960s.

            Before that it was mostly amateur hour, but past the 1940s the US started what I would call the industrial revolution in espionage and intercept with NSA et al. Google et al merely took over the job, but the lack of interest in people's rights has been established early on.

            Even now there is a massive amount of deception in play with respect to intercept.

        14. John R. Macdonald
          Big Brother

          Re: Keys

          "Gentlemen do not read each other's mail."

          US Secretary of State Henry L. Stimson

        15. RegGuy1

          Your ignorance and lack of gratitude for a country which saved the UK in the 1940s[1]

          Wasn't that Russia, that distracted half of the German army away to the East? Stalingrad, heard of that?

          [1] Title cropped to fit

          1. Lars Silver badge
            Happy

            Re: Your ignorance and lack of gratitude for a country which saved the UK in the 1940s[1]

            @RegGuy1

            Hitler's goal was always in the east, parts of Russia and Ukraine, to use the word "lebensraum" he used (NOUN, the territory which a group, state, or nation believes is needed for its natural development.).

            France was for the Treaty of Versailles and with Britain he suggested a peace treaty that was rejected.

            Luckily for everybody he made many mistakes and I would claim declaring war on the USA was one of them.

            And as somebody on this thread mentioned Berlin

            One of the myths we have in the west is that we gave Berlin to the Russians, in reality D-day was too little too late for Berlin.

            You find the numbers here:

            https://www.historylearningsite.co.uk/world-war-two/world-war-two-and-eastern-europe/the-battle-for-berlin/

        16. Grinning Bandicoot

          Re: Keys

          The Continentals did not defeat the English; they forced a German monarch into recognizing the rights of the English do not stop at Bristol or Plymouth but were extended to the Americas. Burke in Parliament spoke for American cause which was also the English cause in that it opposed the expansion the the authority of a German monarch. As for the number of killed in WW2 remember that it started hot in '39 and the US started with conveys in '41.

          What you should be worrying about is the drift from Locke to that of Hobbes and his Leviathan by the descendants of those revolutionaries. Between a state sponsored espionage group and a sloppy public corporation I'll take the one that that favors Locke and Mills over one firmly opposed to such thoughts of liberty.

          Watch your use of history which has more contrary events to suck one into the morass of stupid ad hominem trash

          sent unchecked uncensored while POed

        17. southen bastard

          Re: Keys

          the us sold arm and ammo to both sides for massive profit,

          did not get involved untill they were attacaked,

          then billed the uk for the service ,

          mercain dont do anything THAT DOSE NOT INVOLVE PROFIT

          the other five eyes countrys have suffered under mercian bulling of to long

          viva the revulotion

          1. Lars Silver badge
            Thumb Down

            Re: Keys

            "then billed the uk for the service ,".

            Ah please, that's more than silly, you provide food, oil and stuff for free because the British as such jolly good fellows. Seems to me that the "have the cake and eat it" is an old tradition among some Brits.

            The US wasn't like the USSR where everything was owned by the state.

            Incidentally the real expert on selling arms to both sides was British.

  5. Anonymous Coward
    Anonymous Coward

    quick, ban Cisco!

    1. Anonymous Coward
      Anonymous Coward

      I must admit that I have been thinking how much fun it could be to start a #BanCisco campaign on the back of this - just to wind up the Americans.

      However, I can't be asked. Too busy.

      1. 's water music Silver badge

        can't be asked

        is this a minced oath, an eggcorn, a new literal level of busyness or all three?

        1. Anonymous Coward
          Anonymous Coward

          Re: can't be asked

          Yes, obviously.

          :)

  6. Bronek Kozicki Silver badge

    "just as flawed"?

    You mean, that ssh IPv6 address is somehow not-Internet facing, like the Hauwei's telnet port?

    1. Dan 55 Silver badge

      Re: "just as flawed"?

      The flaw is better than Huawei's flaw. Buy American because it's better, right?

      1. Anonymous Coward
        Anonymous Coward

        Re: Buy American because it's better, right?

        Donald Trump says so... Therefore it must be true then?

        MAGA and all that...

        Don't forget that we will soon have a load more US Owned and Operated Spypoints all over the UK. All those Tesla Model 3's (with AFAIK at least 8 cameras recording everything around the car and sending data home) that will soon hit the roads are always connected to the Mothership in the USA.

        Who exactly runs that mothership (Tesla or the NSA) is another question entirely isn't it?

        1. Fred Flintstone Gold badge

          Re: Buy American because it's better, right?

          All those Tesla Model 3's (with AFAIK at least 8 cameras recording everything around the car and sending data home) that will soon hit the roads are always connected to the Mothership in the USA.

          I'd keep an eye on your WiFi access logs then - there may be a Google partnership in the works for Streetview v2 with a new round of "accidental" WiFi intercept which was "accidentally" left behind by an engineer which then dumped data into a service backend that just "accidentally" happened to be fully set up and available and "accidentally" fully compatibel with the data collection in the cars.

          Did I mention that it was all an accident?

          1. Anonymous Coward
            Anonymous Coward

            Re: Buy American because it's better, right?

            No need for accidents now when you can blame it on AI... "Make a better Maps Jarvis."

          2. Doctor Syntax Silver badge

            Re: Buy American because it's better, right?

            "Did I mention that it was all an accident?"

            It's the US. They have bigger accidents. YUUUGE accidents. The best.

            1. Anonymous Coward
              Anonymous Coward

              Re: Buy American because it's better, right?

              Yeah, one of them came by default coloured orange, but they didn't take that as a warning until it was too late.

    2. Anonymous Coward
      Anonymous Coward

      Re: "just as flawed"?

      You missed the best part - it only affects ACI switches. At last count, I believe Cisco had less than 10,000 customers using ACI and there were a significant number in PoC only.

      Between ACI and an IPv6 management plane, the government agencies might manage to find something interesting...

      Huawei are clearly the larger threat - their stuff gets used.

      1. Anonymous Coward
        Anonymous Coward

        @AC - Re: "just as flawed"?

        Government agencies plan for the future. It's better to start early when nobody pays attention.

        1. Anonymous Coward
          Anonymous Coward

          Re: @AC - "just as flawed"?

          In an environment concerned with security, the management plane would be protected by ACL's, multiple layers of firewalling, intrusion detection systems and likely air-gapped management.

          It's a bug (more likely misconfiguration of an OS build script) that needs to be fixed - the operational risk of the issue is likely tiny.

          In a less security focussed environment, these a still data centre class switches (no PoE, 10/25/40/50/100Gbps ports, above average cost per port due to buffering and other features) and without any additional devices, I would expect the switches to be protected by ACL's at a minimum.

          1. Bitsminer

            Re: @AC - "just as flawed"?

            ...and likely air-gapped management...

            And how do you air-gap the RJ45 management port? With copper-plated air?

    3. phuzz Silver badge

      Re: "just as flawed"?

      At least a potential attacker would need a valid username and password to access the telnet port*, rather than anyone being able to use the ssh flaw on any affected Cisco once they knew the hard-coded credentials.

      * which they could grab unencrypted from the wire if they had access and someone actually logged in over telnet, which is why telnet is bad.

      1. seven of five

        Re: "just as flawed"?

        If this counts as a victory, I do not want to see a defeat.

      2. Roland6 Silver badge
        Coat

        Re: "just as flawed"?

        >rather than anyone being able to use the ssh flaw on any affected Cisco once they knew the hard-coded credentials.

        I suspect Cisco only fixed it after a certain US agency realised that 'anyone' included the Chinese...

  7. Anonymous Coward
    Anonymous Coward

    Spooky

    It’s entirely obvious that this whole “Waah-way” matter is all about the Yanks losing the ability to snoop on us via Cisco and other comprised equipment. Often it’s allegedly spiked by the CIA before it’s even sent out to the customers.

    The more Waah-way kit that’s out there the more they are hampered in their “Full Spectrum Dominance” endeavours.

    1. Anonymous Coward
      Anonymous Coward

      Re: Spooky

      > Yanks losing the ability to snoop on us

      The Huawei kit currently has enough bugs in it that the NSA could certainly exploit it.

      The danger is that Huawei could fix the bugs.

    2. Pascal

      Re: Spooky

      I don't know, I take the simpler approach and chalk it up to lobbying. A non-US company is taking away money from US companies. US companies buys politicians (let's call lobbying what it is). Politician make a fuss. This time they have the added bonus of being able to tie this to some security issue like they did with Kaspersky, but otherwise it's just standard "international commerce".

  8. GreggS

    It's Ok for the US to spy on its own and others citizens by using back-doors, not the Chinese.

    1. jonnycando

      Keep moving...nothing to see here....

      What the difference is, is intent.....CIsco makes backdoors because they are incompetent. Huawei makes backdoors because the Chinese government tells them to do it.

      1. GreggS

        Re: Keep moving...nothing to see here....

        Facts?

        There's no no more published proof that Cisco puts backdoors into it's products at the behest of the US government than there is Huawei for the Chinese. It is only the balance of probabilities that is becoming the stick with which to beat them.

      2. Jeffrey Nonken Silver badge

        Re: Keep moving...nothing to see here....

        "What the difference is, is intent.....CIsco makes backdoors because they are incompetent. Huawei makes backdoors because the Chinese government tells them to do it."

        Citation needed.

  9. Anonymous Coward
    Anonymous Coward

    How long before China bans this obviously back door prone equipment and ask their allies to do the same? They should also threaten to stop sharing information and spit their dummy out if they don't get what they want.

  10. Anonymous South African Coward Silver badge

    His Trumpness is not happy.

    Best get out of that sinking ship. Oh wait, the lifeboat's systems have also been haxx0red? Oh noes!

  11. Loyal Commenter Silver badge

    A reminder to all the 'lawful intercept' suporters out there...

    A backdoor is a backdoor, and it doesn't care whether it's the good guys* or bad guys* using it.

    *your definition of good guys and bad guys may vary. The backdoor still doesn't care.

    1. John Smith 19 Gold badge
      Unhappy

      "The backdoor still doesn't care."

      And that is the real truth of both of these fairly stupid episodes.

      Fully secure hardware would be secure to everyone.

      And governments don't like that.

  12. Robert Carnegie Silver badge

    My question

    Does this represent an opportunity to get hold of Donald Trump's legendary, nay mythical tax returns?

    If any. I suspect he legally doesn't exist.

  13. Anonymous Coward
    Anonymous Coward

    F5 too

    Bahaha this is just as bad as F5 Networks, use the same SSH keys on all your boxes !! makes it much easier to administer...

    1. seven of five
      Coat

      Re: F5 too

      Well, F5 is kind of accepted as "refresh all", isn´t it?

  14. Anonymous Coward
    Anonymous Coward

    Next refresh, Cisco is out.

    (as lead InfoSec), I just informed our network engineer that we will be seeking non cisco equipment next refresh.

    So many pathetic exploits/backdoors over the last 2 years. They have lost all trust/reputation.

    I wonder if this is the exploit that got Citycomp hacked.

    1. TechStar

      Re: Next refresh, Cisco is out.

      If one vendor publishes fixes for exploits/backdoors, does it mean the other vendors don't have exploits/backdoors? Or do those other vendors just not fix them...

      1. Anonymous Coward
        Anonymous Coward

        Re: Next refresh, Cisco is out.

        Both I'm sure.

        But that's no excuse to stay with a company that we know has left backdoors open (presumably for the NSA, then closed when they are in the wild) as often as they have.

  15. David 164

    Didn't GCHQ essentially told parliament that they don't trust any networking gear from anybody or that any network could be deemed secure? An everything should be encrypted before it sent across any network?

    1. hopkinse

      "Didn't GCHQ essentially told parliament that they don't trust any networking gear from anybody or that any network could be deemed secure? An everything should be encrypted before it sent across any network?"

      Is that not essentially paragraph 1 of any discussion on security that's worth its salt?!

    2. Roland6 Silver badge

      Didn't GCHQ essentially told parliament that they don't trust any networking gear from anybody or that any network could be deemed secure?

      Well given the UK effectively has had no native OEM for mobile network kit for some decades, I suspect (and hope) GCHQ have had sometime to get their heads around using and depending on equipment from third-party nations in your critical infrastructure and thus how you mitigate risks.

      I thus suspect they are some years ahead of their US friends.

      An everything should be encrypted before it sent across any network?

      I think enhanced encryption devices that satisfy GCHQ's requirements are made in the UK...

  16. ST Silver badge
    Devil

    it's better to stick to reality

    1. NSA eavesdrops on US allies and enemies. It's a known fact, and it is semi-officially acknowledged by the US.

    2. The UK is part of the Five Eyes agreement. Membership has its privileges. You get a lot of intelligence goodies from the US, and specifically from NSA.

    3. The UK doesn't like being eavesdropped on by NSA. They prefer being eavesdropped on by China. Which is kinda weird, considering that the UK is home to the largest eavesdropping stations in the world. Menwith Hill for starters. Not the only one.

    So, it looks to me like the UK has a few choices:

    - Ban all Cisco equipment, ship it all to the trash compactor, and only use Huawei. That will most likely kick the UK out of the Five Eyes. It will thereafter be known as the Four Eyes. This will not stop NSA's UK eavesdropping activities, or their efficiency. Quite the opposite.

    - Design and build your own UK pure of heart and true of thought routers. Kick Cisco, Juniper, Huawei out. This won't stop NSA's UK eavesdropping activities either. They'll be just as efficient as they are now, modulo different hardware/firmware/software, and different attack vectors. It might take NSA a few months to find the new exploits. They will find them. But at least there's less of a chance to be spied on by the Chinese. In the end, the UK is pretty much back to where it is right now.

    - Accept the status quo: a few Cisco backdoors accidental bugs here and there, a little US eavesdropping now and then and in-between, but the UK gets to stay in the Five Eyes. Membership has its privileges. And no Chinese slurping.

    There are no white knights in this story. Just a lot of grandstanding, pretense and posturing.

    1. Skwosh

      Re: it's better to stick to reality

      Surely if the UK decides to use some less expensive though probably equally vulnerable Huawei gear in its peripheral pond-life public networks then your super duper cleverer-than-anyone-else NSA will be able easily to continue snooping on us via the Huawei gear and indeed if the horrid Chinese are similarly clever then they are almost certainly already snooping on us via the non Chinese (and apparently vulnerability rich) gear we are using already anyway. I suspect the reality is that this would just be a shift on the dial of relative convenience for the respective agencies rather than some sort of dramatic new difference of kind. It would just mean the NSA would probably have to work a little bit harder and the Chinese would probably have to work a little less hard in order to get the kind of information they are both almost certainly already slurping daily from the UK anyway. Narrowly then I suppose it should come down to how much value the US gets from the UK being in the five eyes and if that value outweighs the extra inconvenience to the US of having to hack peripheral networks in the UK running on gear made by non US friendly manufacturers (useful practice - no?) but I think there are probably much wider economic issues and also all manner of longer term geo-political shit to be considered which is much more likely to be the true substance of this row.

      1. ST Silver badge

        Re: it's better to stick to reality

        > [ ... ] how much value the US gets from the UK being in the five eyes and if that value outweighs the extra inconvenience to the US of having to hack peripheral networks in the UK running on gear made by non US friendly manufacturers [ ... ]

        The US gets a lot from the being in the Five Eyes. No question about it.

        The question for the UK is: how much value would it get by leaving the Five Eyes and pissing off the US?

        I think the answer to that question can be found in Brexit.

        Brexit looked like a Really Good Idea in June 2016 to a very slim majority of Brits. Does it look the same now?

        Other than meaningless Brexit slogans peddled by politicians, what precisely was so wrong with the UK being and staying in the EU? It worked OK for 40+ years.

        1. Skwosh

          Re: it's better to stick to reality

          The narrow question – as I said – is how much value does the US get from the UK being in the five eyes – how bad/inconvenient for the US would it be to tolerate the UK still being an eye if the UK went ahead and used Chinese gear in its peripheral networks. Ideally presumably the US would like everyone in the world and particularly everyone in the five eyes always to use gear made by on-side nations indefinitely, no matter how crap and/or expensive it is compared to the alternatives – and of course I assume the UK is considering the risks the US will throw its toys out of the pram even if that might not be the most rational thing for it to do in the short term. I have no privileged knowledge about any of this but it is clear that part of what is happening at the moment (if the comments section here is anything to go by!) is a lot of posturing and bluff calling on both sides. Surely anyone trying to take a reality based approach to understanding the world needs to understand that lots of strutting and bloviating is an important part of human decision making, particularly in the field of international relations.

          Regarding Brexit – as you observed, it was a narrow outcome of a democratic process and I would assume that someone with your reality based approach understands that the point of democracy is not to make good decisions – the point of democracy is to make it possible for us to change course when it becomes clear we've made a bad decision. The election of DJT in the US was also the narrow outcome of a democratic process and it has been melodramatically argued by many (though personally I think it is a lazy argument) that DJT's America First doctrine (a clearly stated part of his campaign platform) has seriously undermined various written and un-written international trust relationships many of which date back to the end of the second world war.

          The deep historical undertow here in my view is the likely slow but steady decline of US hegemony and how the US and the rest of the world is going to adapt to that. Over here we do at least have some fairly recent experience with coming to terms with declining hegemony! As I said, I have no privileged knowledge about any of this, but perhaps one way to look at it could be as a nudge in the direction of knowing when it does and does not make sense to try to use your (perhaps dwindling) power simply to try to brute force your will rather than compromising and thus perhaps gaining the skills sooner rather than later that you will eventually need to adapt to a world in which your power is more limited?

    2. Anonymous Coward
      Anonymous Coward

      Re: it's better to stick to reality

      and you get a lot of intelligence from gchq. stop it with your jungoistic imperialistic crap.

      you seem to hate everyone here, and hate everything British, and seem determined to wind everyone up, and then you whine when you're called a troll. Please go away. fox wants their viewer back.

      1. ST Silver badge
        Devil

        Re: it's better to stick to reality

        > [ ... ] jungoistic imperialistic crap.

        As in Carl Jung? I didn't know Carl Jung was an imperialist. I thought he was a psychiatrist.

  17. Anonymous Coward
    Anonymous Coward

    Re: Domains for email

    Are american companies subject to the same security reviews that have been done on Huawei.

    They discovered quite a lot of crap code in the Huawei review, which is to be expected, and they are working on fixing the issues.

    But do they review the source code for the firmware of all american kit too? Or do we just take it on trust

  18. cabac

    If you believed what the ACI sales team said.......

    .....and deployed an ACI fabric in your datacentre you've much bigger things to worry about.

  19. MR J

    Netgear still haven't fixed a old bug that they had that I reported years ago.

    Basically with the web interface turned off you can still ask the router to reset the admin password via the netgear website. It will forward the existing details of the router in the request and all you need is the MAC address (that the router itself has sent in plaintext!)

    Been years now, but Netgear told me it wasn't an issue as people would eventually migrate away from those devices.

  20. Fazal Majid

    Belgacom hack

    Cisco routers were actually backdoored by GCHQ when it spear-fished Belgacom engineers to spy on EU communications (whether for themselves or for their American masters is open to conjecture).

  21. Bandikoto
    Big Brother

    Incompetence or Stupidity?

    Given those who got rewarded at Cisco, it could be either.

    Cisco has had secret backdoors into the gear for decades now. Every time one is found, they say "Oopsie daisy!" and issue a patch.

    I doubt that any of the Cisco spin-offs are any better, given how incestuous those companies are.

  22. Eduard Coli

    Just as planned

    Its been common knowledge for sometime that since businesses entertaining doing business in the PRC have to have a Chinese partner and the new company has to have a CPC member on the board there is rampant IP theft occurring. In cases where this does not get the IP the CPC and Chinese industry craves it is also known that those who refuse a request by a CPC member or business to look at a design that workers will strike or your plant will burn down or you will be thrown out. In their feverish race to get access to Chinese slave labor the wealthy may have given the whole show away to the Chinese.

  23. MrReal Bronze badge

    The real problem the CIA has with Huawei gear is that it hasn't got backdoors that they can use.

    Remember the US insistence on controlling encryption and of being able to hack stuff?

    Now I wonder when all those Venezuelan power stations that went down on cue were running....

  24. Anonymous Coward
    Terminator

    Hardcoded default SSH key pair

    Cisco has issued a free fix for software running on its Nexus 9000 series machines that can be exploited to log in as root and hijack the device .. due to a default SSH key pair hardcoded into the software

    Either they're hiring underachievers to write the software or they're lying to us or else they've dumbed CS cources down so much that the code-monkeys don't know how to write secure systems, as someone on Reddit put it:

    ‘there is "mass incompetence" in tech right now that would "scare the shit out of us" if we saw it first hand like he did.’

  25. Anonymous Coward
    Anonymous Coward

    It doesn't seen rather odd at all that the US and the security establishments of her allies do not want Huawei involved with 5G, main trunking backhaul or any major aggregation points.

    China has made public it wants to be the preeminent power globally, and that may well mean we are coming to some sort of showdown.

    If China is the vendor for your critical national infrastructure it will A) know how your network is laid out B) it will have many of the IP addresses of the critical nodes C) will be able to coerce countries into towing its line because D) with the knowledge of all of the above, fatally compromising the network is orders of magnitude easier.

    Even allowing Huawei into the Radio Access Network for 5G is too risky.

    1. sed gawk Bronze badge

      Bollocks

      My IP is 127.0.0.1

      My router is 192.168.0.1.

      My server is 172.16.0.1

      My firewall is 10.0.0.1

      good luck with that.

      1. Anonymous Coward
        Anonymous Coward

        Re: Bollocks

        You could have stopped after 127.0.0.1 - after revealing that critical info., I hacked your system and worked out the rest..

        I AMZ TH3 3L1TE HAX0R!!!

        1. sed gawk Bronze badge
          Pint

          Re: I've been owned

          Where do I send the bitcoin, hurry up before it's worth(even)less

  26. Will Godfrey Silver badge
    Black Helicopters

    It's all fake

    This whole thing is a game to the big nobs. I'm half convinced they quietly get together from time to time so they can decide who's turn it is to be the bad guy.

  27. Anonymous Coward
    Anonymous Coward

    The difference is Cisco & the others are just incompetent in not testing correctly.

    Others are working for state agencies, i've dealt with some of these agencies, the ones that insist you connect a "bridge" box over your firewall, that they have access to, so that they can enter into your private corporate network.

    Don't do it & they will disconnect your Network & telephone connections, refuse to renew you business licenses & the visas for your staff,

    Cisco does not have that power, this is not about bugs in software.

    1. Anonymous Coward
      Anonymous Coward

      Cisco doesn't need or want that power. The issue is the government leaning on them.

      As to this issue, you're too kind calling it a "bug". It's a fundamental design failure, not an accident!

  28. Sleep deprived
    Happy

    So China doesn't need Huawei gear after all

    They may spy as well with US gear.

  29. JaitcH
    FAIL

    The US Just Doesn't Want To Admit It Is A Second Rate Nation With A Massive International Debt

    Long ago the US had it all: money, opportunity, talent, leadership, manufacturing and a vision.

    Now look at it. Reduced to borrow more money, opportunity slipping away to Europe and the Far East along with talent, elect an inveterate liar, massive tranches of manufacturing transferred (so corporate profits soar) and technical shortsightedness. The country can't even feed itself. And it has to rent seats on Russian rockets to reach the International Space Station!

    The only thing the US excels in in is spying, spying on most every communications system extant. What is the purpose of having an NSA spy office in Cambodia, especially now it has it's own InterNet feed, rather than via VietNam. And making sure the few networking systems it leak like Harry Belafonte's famous bucket.

    Don't laugh, Britain doesn't even make machine screws.

    1. Reg Reader 1
      Thumb Up

      Re: The US Just Doesn't Want To Admit It Is A Second Rate Nation With A Massive International Debt

      There are also the issues of Chinese labour being near forced labour in many instances, working at pennies on the dollar in comparison with what a European or North American would need to earn a living. Some of these developing economies can afford nukes and space missions but not to educate, feed, or have healthcare for much their populations. I think the developed economies need to reevaluate trade and manufacturing relationships. The Corporatists used Globalization to break Unions and increase profits while moving jobs off shore; moved away from businesses having pensions for employees to a stock market gamble and reduced employment opportunities in developed economies. This has stripped a lot of wealth of the middle class that was built up from the end of the second world war through present but it appears to me that since the IT stock market burst at the dawn of this millennia that middle classes are contracting in developed nations.

      So, aside from potential snooping there real financial issues, as well.

  30. Lars Silver badge
    Happy

    A few things to remember.

    While there has been a lot of the silly Anglo/American bickering about who did what, and why, and when, let's not forget the facts.

    Britain was in need of help, asked for help and received help not only from the Commonwealth countries but crucially from the USA. The American help was immense not only during the war but very much for Europe, after the war too, starting with the Nuremberg trials and especially due to the Marshall plan.

    While I am not amused by the smell coming out of the White House today I believe, as the optimistic pessimist I am, it's only temporary.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019