Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: telco service?
From: vulcanius <vulcanius () gmail com>
Date: Thu, 5 May 2005 11:52:47 -0400

Heh. I don't think it's off topic at all, after all were just
disclosing information.

KF, your absolutely right. The lack of regulation and the lack of
attention people give to it is atrocious. You would think in a post
9/11 America that they would at least have some sort of security
board. Same goes for the utility companies.

Speaking of LENS. If anyone is interested in a copy of the LERG (local
exchange routing guide) send me an e-mail. Basically a bunch of excel
spreadsheets mapping out switches across the US. Find out who manages
it, what equipment they are running. What NPA/NXX's they control, etc.
It's a nice little thing to have around sometimes. Shoot me a private
e-mail if you'd like a copy. Forewarning, the file is roughly 45MB so
plan to have an FTP ready for me to upload it to.

On 5/5/05, KF (lists) <kf_lists () digitalmunition com> wrote:
Deigo Dude wrote:

Continuing on the thread of telco's (even though its off topic)

I think it actually falls in a safe zone under the list charter. In
general though I feel that the security of our nations telco
infrastructure should certainly be talked about. After the deregulation
of the industry I feel that some of these companies need to be held
accountable for their equipment. They are currently in the position that
they can simply pull  wool over any anyones eyes that inquires about
their security. 'These aren't the droids you're looking for".

If you get too close to finding something out they try to burry you in
legal jargon and mumbo jumbo instead of addressing the problems at hand.
It is really quite pathetic.

Every try to talk to your local police about the potential that someone
may have taken control of your towns DMS100... try it sometime. Have an
even funner time if you live out in the middle of B.F.E.

Ever try to talk to the FTC about a telco issue? FBI? DHS? Its not a fun
task...  especially when folks either A have no clue what you are
speaking of or B simply don't care.

These telcos act like the internet and computers have nothing to do with
the security of their network... I think its bull shit.

I used to have access to https://lens.bellsouth.com (Local exchange
navigation system) so you all im sure would also have fun if you can
gain access to that. You can look up full information for
non-published numbers, make reservations of new numbers, make service
orders, change phone service, pretty much anything a bellsouth
employee would need to do at any point.

I am sure you and several others have had access to that sort of thing
over time. That is exactly part of the problem. NO standards and no one
to really regulate them.

-KF
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]