Mastodawn

RobotToaster 1d ago

Country that put backdoors into Cisco routers to spy on world bans foreign routers

https://mander.xyz/post/49426309

Country that put backdoors into Cisco routers to spy on world bans foreign routers - Mander

Lemmy

Show thread

nonentity 1d ago

This tells me any equipment that is classified as acceptable by these requirements is immediately suspect, and should not be permitted to connect to, or communicate with, equipment you need to trust.

Show thread

floquant 1d ago

Not tinfoil. en.wikipedia.org/…/Communications_Assistance_for_…

Communications Assistance for Law Enforcement Act - Wikipedia

Show thread

nonentity 1d ago

I’m well versed in the CALEA capabilities of DOCSIS equipment, hence my comment.

Show thread

Crozekiel

How do you have internet without a DOCSIS modem? Is this a problem of where I live that the only option requires it? Or do you just have a strong firewall between it and the rest of your network (assumably on the router)?

Show thread

nonentity 8h ago

The CALEA functions aren’t in the modem, they’re in the CMTS, the router the modems talk to/through at the head end. I’d expect similar demarcation with other access technologies, but they’re not my area.

I see this new requirement as an attempt, at least partially, to bring CPE (Customer Premises Equipment) into CALEA scope.

My take is they’ve made the network a more hostile environment, and elevated the need and justification to build a more resilient overlay layer of encrypted and obfuscated channels.

HTTPS, QUIC, DoT/DoH and such have been piecemeal attempts which make sense over a neutral network. An actively hostile environment needs to be treated as a dumb pipe, preferably one of many diverse paths.