Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Networking Pearl Harbor in the Making

  • From: Eric Germann
  • Date: Mon Nov 07 11:30:14 2005

Looks like vendor J is going to benefit from the issues laid out for
Vendor C.

http://www.networkworld.com/news/2005/110405-juniper-cisco-hacker.html



>
> At 08:52 AM 11/7/2005, you wrote:
>>On Mon, Nov 07, 2005 at 06:43:35AM -0500, J. Oquendo wrote:
>> > the center of the information security vortex. Because IOS controls
>> the
>> > routers that underpin most business networks as well as the Internet,
>>
>>         I think in general this is an argument against converged
>> networks,
>>the added complexity and outages may not be worth the gains..
>
> It is an argument for proper patching policy and procedures. There is
> no zero day exploit for this exploit and to my knowledge, there
> hasn't been one yet which came out at the same time as the advisory
> for ANY major vendor although the window is shrinking. All worms and
> other exploits which have achieved press coverage and caused major
> network disruption would have been avoided by proper patching. All of
> our network is now patched for the latest Cisco advisory. We were
> already running fixed code on a few routers when the advisory came
> out so we knew the code was stable and moved to it on all other
> boxes. I understand that not everyone can act as quickly as we do,
> but to delay patching indefinitely until the problem occurs - for
> "stability" reasons is not the solution either. Better code is part
> of the solution and teaching and enforcing proper programming
> techniques to create secure code in the first place are just part of
> the solution. Getting people to install (so far) secure code is
> another bigger problem which can be solved today. I think all the
> major vendors are aware of the extent of the problem and are making
> their systems more secure by auditing their existing code more
> thoroughly as well as teaching their programmers to code securely in
> the first place.
>
> -Robert
>
>
> Tellurian Networks - The Ultimate Internet Connection
> http://www.tellurian.com | 888-TELLURIAN | 973-300-9211
> "Well done is better than well said." - Benjamin Franklin
>
>
>





Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.