弁財天

ゴフマン「専門家を信じるのではなく、自分自身で考えて判断せよ」

英マイクロフォーカス社のコードレビューはハイリスク政府に対しては限定して行うw。

WASHINGTON (Reuters) - British tech firm Micro Focus International Plc (MCRO.L), the new owner of ArcSight security software, said it would restrict reviews of the core operating instructions in its products by “high-risk” governments, after Reuters reported that the application had been scrutinized by Russia.
英のテクノロジ企業であるマイクロフォーカス社(Micro Focus International Plc/MCRO.L)が 新しいオウナーになったArcSightセキュリティ・ソフトウェアによると、 アプリをロシアが精査するとロイターが報じた後に ハイリスク政府(ロシア?w)には限定されたコア実行命令のレビューしかさせないと発表w。

なんだこの記事は、何で今w。

“It’s a huge security vulnerability,“ said Greg Martin, a former security architect for ArcSight. ”You are definitely giving inner access and potential exploits to an adversary.”
露にコードレビューを許すと攻略され大きな脆弱性になるとw。

HPE agreed last year to sell ArcSight and other security products to British tech company Micro Focus International Plc in a transaction that was completed in September.

Jason Schmitt, the current head of the ArcSight division, said the product makes up a little less than half of the $800 million in annual revenue Micro Focus expects to get from the security software business purchased from HPE.

Schmitt said he could not comment on any source code review that took place before this year, when he took the job, but stressed such reviews do not currently take place. Micro Focus did not respond to requests for comment on whether it would allow Russia to do similar source code reviews in the future or whether Micro Focus executives knew of the review prior to the acquisition.

Microfocus COBOLが変な通信してるのはMicrofocus社が買収したArcSightが組み込んであるからで、そのコードを露にレビューさせたのでロシアが攻略してるのだと、ペンタゴンw
ゲラゲラ。

[root@hoge8 log]# grep ":123" iplog
Oct  5 12:00:32 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 14699 from c-kint.tv (150.95.140.108):123 (48 data bytes)
Oct  5 12:04:58 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 59541 from marisa.jp.futa.moe (45.63.124.38):123 (48 data bytes)
Oct  5 12:12:29 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 30534 from chobi.paina.net (150.95.148.140):123 (48 data bytes)
Oct  5 12:13:45 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 28043 from 108.61.223.189.vultr.com (108.61.223.189):123 (48 data bytes)
Oct  5 12:17:55 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 35025 from c-kint.tv (150.95.140.108):123 (48 data bytes)
Oct  5 12:22:03 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 19432 from marisa.jp.futa.moe (45.63.124.38):123 (48 data bytes)
Oct  5 12:29:35 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 57851 from chobi.paina.net (150.95.148.140):123 (48 data bytes)
Oct  5 12:30:55 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 9724 from 108.61.223.189.vultr.com (108.61.223.189):123 (48 data bytes)
Oct  5 12:35:12 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 62559 from c-kint.tv (150.95.140.108):123 (48 data bytes)
Oct  5 12:39:15 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 64177 from marisa.jp.futa.moe (45.63.124.38):123 (48 data bytes)
Oct  5 12:46:53 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 42493 from chobi.paina.net (150.95.148.140):123 (48 data bytes)
Oct  5 12:47:59 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 23811 from 108.61.223.189.vultr.com (108.61.223.189):123 (48 data bytes)
Oct  5 12:56:28 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 51708 from marisa.jp.futa.moe (45.63.124.38):123 (48 data bytes)
Oct  5 13:04:05 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 29818 from chobi.paina.net (150.95.148.140):123 (48 data bytes)
Oct  5 13:05:21 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 11668 from 108.61.223.189.vultr.com (108.61.223.189):123 (48 data bytes)
Oct  5 13:09:38 UDP: dgram to hoge8.localdomain (hoge8のアドレス):port 50445 from c-kint.tv (150.95.140.108):123 (48 data bytes)
[root@hoge8 log]#
これってArcSightの裏口じゃなくてコードを精査したロシアからの攻撃なんだぁ。そーなのかぁ。( ありえないだろ。

投稿されたコメント:

コメント
コメントは無効になっています。