<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Wed, Nov 5, 2014 at 3:57 AM, Collin Anderson <span dir="ltr"><<a href="mailto:collin@averysmallbird.com" target="_blank">collin@averysmallbird.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr"><div class="gmail_extra"><span class=""><br><div class="gmail_quote">On Wed, Nov 5, 2014 at 3:58 AM, Jerry Leichter <span dir="ltr"><<a href="mailto:leichter@lrw.com" target="_blank">leichter@lrw.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div style="overflow:hidden">What it *looks* like has happened is that Wind River (and they are probably not alone) simply ignored the "pointless" step of applying for an export license. I'll bet many companies today do, too - they treat these regs as relics of a bygone era.</div></blockquote></div></span></div></div></blockquote><div></div></div><div class="gmail_extra"><br></div><div class="gmail_extra">I wonder if there is more... </div><div class="gmail_extra">CCN and other networks today picked up a bit about latent malware in industrial </div><div class="gmail_extra">control software. Some devices have apparently been infected for five+ years but</div><div class="gmail_extra">not activated.</div><br>Stuxnet has demonstrated that industrial control hardware is important to </div><div class="gmail_extra">industry and governments. </div><div class="gmail_extra"><br></div><div class="gmail_extra">It is possible that there is more going on here? We have a lot of visibility</div><div class="gmail_extra">to bugs in Linux and GNU tools. Not so much for a long list of</div><div class="gmail_extra">other interesting products... data bases, industrial control, network.</div><div class="gmail_extra"><br></div><div class="gmail_extra">External hacking by white hats has gotten a heavy duty (w)rapping by the law. </div><div class="gmail_extra">Prosecution of white and grey hats is common but the real bad guys </div><div class="gmail_extra">seem to be out of reach. Some black hats are even making a living selling </div><div class="gmail_extra">their discoveries to agencies. Interesting ....</div><div class="gmail_extra"><br></div><div class="gmail_extra"><br></div><div class="gmail_extra"><br>-- <br><div class="gmail_signature"><div dir="ltr"> T o m M i t c h e l l</div></div>
</div></div>