bleearg13
join:2001-03-03
Gaithersburg, MD | New Juniper code, too
Juniper pre-released new code to large ISPs and most of them, including us, have already upgraded to prevent this problem.
Every time these vulnerabilities are announced, the media jumps on it and creates mass pandemonium. |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| said by bleearg13  :Juniper pre-released new code to large ISPs and most of them, including us, have already upgraded to prevent this problem. "Large ISPs" may be at the center of the universe, but they are not the entire universe: Other people have to upgrade too.Every time these vulnerabilities are announced, the media jumps on it and creates mass pandemonium. This was a big enough deal that large ISPs performed emergency upgrades - why would it not be "news" ?
Steve
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
dpocoroba
Premium
join:2000-11-14
224.0.0.5 |  Agrred, any kind of news that would cause major loss of service. Or cuase interuptions to ISP's and there SLA's is worth spreading the word.
--
"Knowledge is contagious, infect" |
|
BeesTea
Network Janitor
Premium,VIP
join:2003-03-08
00000 | reply to Steve
Absolutely. When tier 1's start going down en-mass. That's news.
-BeesT
--
echo 16i[q]sa[ln0=aln100%Pln100/snlbx]sbA0D4D465452snlb xq |dc |
|
bleearg13
join:2001-03-03
Gaithersburg, MD
| reply to Steve
My point was that the large network providers have already upgraded, so at the very least, a large part of the core of the internet is protected against this vulnerability already.
Like most everything else in the media (ie. flu shot shortage, shark attacks, killer bees, etc.), these announcements are often blown out of proportion. There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| said by bleearg13 : There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. Not if you have a Juniper that hasn't been patched...
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
smcallah
join:2004-08-05
Home
| said by Steve : said by bleearg13 : There is no need for mass hysteria, because if one gets their internet service from a "Tier 1" ISP, or even a "Tier 2" ISP who needs service from a Tier 1, the problem is already taken care of. Not if you have a Juniper that hasn't been patched... You won't really find too many non-Tier 1 ISP's that use Junipers. Juniper doesn't really make any "small" routers. Their smallest router is still a 2.5/5 Gig backplane. No one needs all that for their T1's, or even T3's... not even their OC3, unless they've got a need for 16 OC3's in one box. And that doesn't sound like a "small" ISP. |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| said by smcallah : You won't really find too many non-Tier 1 ISP's that use Junipers. The webhosting operation where I'm on staff has two of them, and the router guy (a JCNIE) is making an onsite visit today to perform this upgrade.
Steve
--
Stephen J. Friedl • Unix Wizard • Microsoft Security MVP • Tustin, California USA • my web site |
|
BeesTea
Network Janitor
Premium,VIP
join:2003-03-08
00000
| reply to smcallah
Border capacity isn't the only factor when considering router back-plane needs. We use Junipers inside our borders as part of our BGP-based policy system. They have no outside connection to them at all.
Cheers,
-BeesT
--
echo 16i[q]sa[ln0=aln100%Pln100/snlbx]sbA0D4D465452snlb xq |dc |
|
