nanog mailing list archives
Re: New Cisco Vulnerability
From: Michael Sinatra <michael () rancid berkeley edu>
Date: Wed, 16 Jul 2003 15:51:49 -0700 (PDT)
On Wed, 16 Jul 2003, Eric Gauthier wrote:
Ok, fine, don't tell the rest of use what it is, how to detect it, or how to defend against it. We in the university space will just do nothing because we have nothing to put into our IDS sensors to watch for/block it out. Because, you know, we're going to be the sources :)
And then we'll hear all of the usual flak about how universities are unprepared to handle security problems... I would just like to hear if there is a publicly available fix yet. If the backbone carriers have already scheduled their work, then they likely have a fix in hand. If the fix isn't available, then a rough schedule would be good so we can plan. I'd like to understand the vulnerability, but I'd certainly be okay with cisco saying "psst. put this version of IOS on your boxes. don't ask us why just yet. we'll explain more later." Or, maybe they WANT *our* routers to kick over so that we can't source the attack... michael
Current thread:
- New Cisco Vulnerability Vincent J. Bono (Jul 16)
- Re: New Cisco Vulnerability Petri Helenius (Jul 16)
- <Possible follow-ups>
- Re: New Cisco Vulnerability Gregory Hicks (Jul 16)
- Re: New Cisco Vulnerability John Payne (Jul 16)
- Re: New Cisco Vulnerability Jay Hennigan (Jul 16)
- Re: New Cisco Vulnerability David Raistrick (Jul 16)
- Re: New Cisco Vulnerability Petri Helenius (Jul 16)
- Re: New Cisco Vulnerability Eric Gauthier (Jul 16)
- Re: New Cisco Vulnerability Michael Sinatra (Jul 16)
- Re: New Cisco Vulnerability John Payne (Jul 16)