Take a Network Break! In episode 48 we discuss the unfortunate disappearance of $46.7 million from Ubiquiti’s coffers and speculate on the speculation that EMC may take full ownership of VMware. (So would that make it EMware?)
We dig into the debate on the performance of virtual network services vs. custom silicon, and salute a class action complaint that aims to correct the design flaws that led to hackable Jeeps.
Cumulus Networks releases a version of Cumulus Linux you can run on a laptop. Both Cumulus and Big Switch Networks react to a security researcher’s exploit of ONIE (Open Network Install Environment). And last but not least, Apple fans (i.e. Greg) get smug over the possibility of IBM buying up to 200,000 Macs every year for employees.
This week’s show is sponsored by Riverbed. Riverbed offers a platform for providing end-to-end visibility, optimization, and control across an entire enterprise. See everything that impacts the performance of any app – code, network, user experience – so you can detect and fix issues instantly. Riverbed accelerates delivery of any app regardless of distance, and steers apps over the best network for maximum performance and lowest TCO. Visit Riverbed at www.riverbed.com and tell them you heard about them on Packet Pushers.
Ubiquiti Networks Loses $46.7 Million Down The Back Of The Sofa
Will EMC Go All The Way With VMware?
Amit Daryanani, an analyst with RBC Capital Markets, estimated in a research note to clients last week that combining EMC and VMware into one company would reduce their combined operating costs by nearly $950 million next year…”
Hardware Vs. Virtual
A Sensible Class-Action Car Hack Complaint?
But Tuesday’s filed lawsuit argues that neither Chrysler’s patch nor its recall solves the underlying problem: That Chrysler vehicles remain defective due to their more fundamental architectural vulnerabilities. “As long as the uConnect system is physically connected to the vehicles’ CAN bus, the potential for vulnerability exists,” the complaint reads. “The overarching defect is a design and system architecture problem in that non-secured systems are coupled with essential engine and safety controls. This is not a software issue.”
Cumulus: Try Before You Buy
Cumulus Offers Free Open Networking Tool – Network Computing
ONIE Gets PWNED
Security Benefits of Open Source and Open Development – Cumulus Networks Blog
The much more serious issue he will present is the exploitability of firmware in all network switches. This same exploitability has been known about in servers, laptops and PCs for years (and in some cases mitigated with technologies like Trusted Platform Modules), but its application to networking devices is new.”
ONIE Security – Context & Our Perspective – Big Switch Networks, Inc.
In every one of our customers, the management network has strong separation (e.g., non-routable IPs + firewall +IDS, air gap, etc.) from the rest of the data center. The number of people who can access it, the services that run on it, and the PXE and ONIE software that can access it, are by design extremely limited. The purposeful simplicity and physical separation of these management networks running PXE and ONIE traffic typically lend a level of security via good practice rather than additional software.”
Staying Persistent In Software-Defined Networks – BlackHat/Gregory Pickett