wintr
join:2004-10-13
Calgary, AB | Great...
...and I just signed on for my CCNA test on Saturday. |
|
Monster Rain
Premium
join:2002-08-03
USA | said by wintr  :...and I just signed on for my CCNA test on Saturday. huh? |
|
Monster Rain
Premium
join:2002-08-03
USA | There is a fix
new IOS. |
|
bleearg13
join:2001-03-03
Gaithersburg, MD | reply to wintr
Re: Great...
Can you explain what signing up for your CCNA test has to do with IOS vulnerabilities? |
|
bleearg13
join:2001-03-03
Gaithersburg, MD | New Juniper code, too
Juniper pre-released new code to large ISPs and most of them, including us, have already upgraded to prevent this problem.
Every time these vulnerabilities are announced, the media jumps on it and creates mass pandemonium. |
|
wintr
join:2004-10-13
Calgary, AB | reply to bleearg13
Re: Great...
Just a joke. Not really relevant. Wanted a first post to be honest.
--
546f6f206d616e792073656372657473»augmentedreality.ca |
|
neftv
join:2000-10-01
Broomall, PA | Since your taking the test this Saturday maybe you can go a fix the problem voluntarily and they will hire you on the spot. |
|
wintr
join:2004-10-13
Calgary, AB | The hope is that theres no more freebies, only paid gigs from now on. Hopefully.
--
546f6f206d616e792073656372657473»augmentedreality.ca |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| reply to bleearg13
Re: New Juniper code, too
said by bleearg13 :Juniper pre-released new code to large ISPs and most of them, including us, have already upgraded to prevent this problem. "Large ISPs" may be at the center of the universe, but they are not the entire universe: Other people have to upgrade too.Every time these vulnerabilities are announced, the media jumps on it and creates mass pandemonium. This was a big enough deal that large ISPs performed emergency upgrades - why would it not be "news" ?
Steve
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
dpocoroba
Premium
join:2000-11-14
224.0.0.5 |  Agrred, any kind of news that would cause major loss of service. Or cuase interuptions to ISP's and there SLA's is worth spreading the word.
--
"Knowledge is contagious, infect" |
|
Jeremy341
Bye
Premium
join:2000-01-06
localhost | Flaws? Where?
Flaws in software that wasn't produced by Microsoft? No no, this can't be right. Microsoft is the only one who produces software with bugs in it! |
|
BeesTea
Network Janitor
Premium,VIP
join:2003-03-08
00000 | reply to Steve
Re: New Juniper code, too
Absolutely. When tier 1's start going down en-mass. That's news.
-BeesT
--
echo 16i[q]sa[ln0=aln100%Pln100/snlbx]sbA0D4D465452snlb xq |dc |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| reply to Jeremy341
Re: Flaws? Where?
said by Jeremy341 : Microsoft is the only one who produces software with bugs in it! They've recently begun to license this technology to others...
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
Logan 5
Some people go WAY over the top
Premium,MVM
join:2001-05-25
The WasteLAN
 ·Pacific Bell - SBC
2 edits | Time to check the appliances..
LOL!  When WILL people learn that there's no such thing as perfect code in the world??
To paraphrase: "If they make it, someone else WILL break it"
'Cmon now, MOST (I said most, not ALL) Black Hats/Hackers/Crackers or whaterver they want to call themselves don't work regular 9-5 day jobs so they have FAR MORE time to pick and poke at code like Cisco's IOS until they can peel enough layers of protection away from it like an onion to get at the soft, vulnerable underbelly that will ALWAYS be there if one looks hard and long enough for it.
Give any reasonably intelligent person enough time and resources, and NO electronic medium wil be safe, which means that vigilance and caution should be the first rule of Network Mangement but it seems like most Admins who get caught with their pants around their ankles when a crisis hits have gotten away from the "Not IF it happens, but *WHEN* it happens" mindset of proactively dealing with hardening their networks and have instead moved to the Chicken Little "It won't happen to me" model of securing and maintaining the system's in their care by denying that problems even exist and have little regard for the consequences, because if they did, they wouldn't be in a position to be exploited in the first place. |
|
bleearg13
join:2001-03-03
Gaithersburg, MD
| reply to Steve
Re: New Juniper code, too
My point was that the large network providers have already upgraded, so at the very least, a large part of the core of the internet is protected against this vulnerability already.
Like most everything else in the media (ie. flu shot shortage, shark attacks, killer bees, etc.), these announcements are often blown out of proportion. There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. |
|
Logan 5
Some people go WAY over the top
Premium,MVM
join:2001-05-25
The WasteLAN
·Pacific Bell - SBC
| reply to Monster Rain
Re: There is a fix
said by Monster Rain :new IOS. Don't Cisco's Pix series Firewalls also use the same IOS as everything else? No mention so far of if this latest round of vulnerabilities affects them as well |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| reply to bleearg13
Re: New Juniper code, too
said by bleearg13 : There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. Not if you have a Juniper that hasn't been patched...
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
smcallah
join:2004-08-05
Home
| reply to Logan 5
Re: There is a fix
said by Logan 5 : said by Monster Rain :new IOS. Don't Cisco's Pix series Firewalls also use the same IOS as everything else? No mention so far of if this latest round of vulnerabilities affects them as well No, they don't. PIX OS is completely different from IOS. |
|
smcallah
join:2004-08-05
Home
| reply to Steve
Re: New Juniper code, too
said by Steve : said by bleearg13 : There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. Not if you have a Juniper that hasn't been patched... You won't really find too many non-Tier 1 ISP's that use Junipers. Juniper doesn't really make any "small" routers. Their smallest router is still a 2.5/5 Gig backplane. No one needs all that for their T1's, or even T3's... not even their OC3, unless they've got a need for 16 OC3's in one box. And that doesn't sound like a "small" ISP. |
|
Bobcat
Premium
join:2001-02-04
Bedminster, NJ
·Verizon Online DSL
| reply to Logan 5
Re: Time to check the appliances..
said by Logan 5 :LOL! When WILL people learn that there's no such thing as perfect code in the world?? Ha! You haven't seen MY code!!  |
|
