nanog mailing list archives

Re: Patching for Cisco vulnerability

From: "Petri Helenius" <pete () he iki fi>
Date: Fri, 18 Jul 2003 23:03:59 +0300


if  (ifc->in_bps > ifc->phy_speed || ifc->out_bps > ifc->phy_speed)
{
crash_router();
}

If they added this code, they'd find these bugs in their
labs instead of in our networks.

I remember seeing an article claiming that Cisco´s automated regression
testing does "more than 250000" tests before they release a piece of code.

However, questions about the nature of these tests and if any tests sent
more traffic than a random scripted ping went unanswered.

Pete

Current thread:

Patching for Cisco vulnerability Irwin Lazar (Jul 18)
- RE: Patching for Cisco vulnerability Bob German (Jul 18)
- Re: Patching for Cisco vulnerability Jared Mauch (Jul 18)
  - Re: Patching for Cisco vulnerability Daniel Roesen (Jul 18)
    - Re: Patching for Cisco vulnerability Jared Mauch (Jul 18)
    - Re: Patching for Cisco vulnerability Daniel Roesen (Jul 18)
    - Re: Patching for Cisco vulnerability Larry Rosenman (Jul 18)
    - Re: Patching for Cisco vulnerability Petri Helenius (Jul 18)
- Re: Patching for Cisco vulnerability Valdis . Kletnieks (Jul 18)
- Re: Patching for Cisco vulnerability Jason Frisvold (Jul 18)
  - Re: Patching for Cisco vulnerability Stephen J. Wilcox (Jul 18)
    - Re: Patching for Cisco vulnerability Jason Frisvold (Jul 18)
- Infrastructure Filtering (was Re: Patching for Cisco vulnerability) Charles Sprickman (Jul 18)
  - Re: Infrastructure Filtering (was Re: Patching for Cisco vulnerability) Petri Helenius (Jul 18)
  - Re: Infrastructure Filtering (was Re: Patching for Cisco vulnerability) Niels Bakker (Jul 18)
    - Re: Infrastructure Filtering (was Re: Patching for Cisco vulnerability) Curtis Maurand (Jul 18)
  - Re: Infrastructure Filtering (was Re: Patching for Cisco vulnerability) Jared Mauch (Jul 18)
    - Re: Infrastructure Filtering (was Re: Patching for Cisco vulnerability) Niels Bakker (Jul 18)

(Thread continues...)