----- Forwarded message from Richard A Steenbergen <ras at e-gerbil.net> ----- Date: Fri, 21 Jan 2005 13:11:43 -0500 From: Richard A Steenbergen <ras@e-gerbil.net> To: juniper-nsp at puck.nether.net Subject: [j-nsp] The new Juniper issue/bug/exploit Ok, would anyone like to go ahead and confess now? It's pretty difficult to miss all the tier 1 carriers doing emergency upgrades on all their Juniper routers, and it doesn't take much more work to find out that they're all deploying custom built images from 20050119. I personally agree that it is a smart idea to not tell folks details about the actual issue for a while (which significantly slows down the time for someone to make an exploit and start scanning the internet), but do you mind dropping the rest of us a hint as to what version of code fixes it instead of pulling this "we tip off only the largest network first, in secret" junk? :) Thanks. -- Richard A Steenbergen <ras at e-gerbil.net> http://www.e-gerbil.net/ras GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC) _______________________________________________ juniper-nsp mailing list juniper-nsp at puck.nether.net http://puck.nether.net/mailman/listinfo/juniper-nsp ----- End forwarded message ----- -- Sabri Berisha, SAB666-RIPE - I route, therefore you are http://www.cluecentral.net - http://www.virt-ix.net http://www.bash.org/?78486