Re: CISCO 0-day exploits

[Harlan Stenn <stenn () nwtime org>]

On 2/11/2020 2:04 AM, Saku Ytti wrote:
> On Tue, 11 Feb 2020 at 09:09, Ahmed Borno <amaged () gmail com> wrote:
>
> > So yeah iACLs, CoPP and all sorts of basic precautions are needed, but I'm thinking something more needs to be done, 
> > specially if these ancient code stacks are being imported into new age 'IoT' devices, multiplying the attack vector 
> > by a factor of too many.
>
> I can't see situation getting better. Why should vendor invest in high
> quality code, certainly the cultural shift will cost something, it's
> not 0 cost and what is the upside? If IOS and JunOS realistically were
> significantly less buggy many of us would stop buying support, because
> we either know how to configure these or can get help faster free from
> the community, we largely need the support because the software
> quality is so bad _everyone_ finds new bugs all the time and we don't
> have the source code to fix it as a community.
> So I suspect significantly better quality software would at least
> initially cost more to produce and it would reduce revenue in loss of
> support.

Yeah, things need to get better, and soon.  At least, some things...

Was I too subtle just now?

-- 
Harlan Stenn <stenn () nwtime org>
http://networktimefoundation.org - be a member!