On 2/11/2020 2:04 AM, Saku Ytti wrote:
> On Tue, 11 Feb 2020 at 09:09, Ahmed Borno <ama...@gmail.com> wrote:
>
>> So yeah iACLs, CoPP and all sorts of basic precautions are needed, but I'm
>> thinking something more needs to be done, specially if these ancient code
>> stacks are being imported into new age 'IoT' devices, multiplying the attack
>> vector by a factor of too many.
>
> I can't see situation getting better. Why should vendor invest in high
> quality code, certainly the cultural shift will cost something, it's
> not 0 cost and what is the upside? If IOS and JunOS realistically were
> significantly less buggy many of us would stop buying support, because
> we either know how to configure these or can get help faster free from
> the community, we largely need the support because the software
> quality is so bad _everyone_ finds new bugs all the time and we don't
> have the source code to fix it as a community.
> So I suspect significantly better quality software would at least
> initially cost more to produce and it would reduce revenue in loss of
> support.
Yeah, things need to get better, and soon. At least, some things...
Was I too subtle just now?
--
Harlan Stenn <st...@nwtime.org>
http://networktimefoundation.org - be a member!
