[1831] in WWW Security List Archive
Re: Cisco access control
daemon@ATHENA.MIT.EDU (Brian W. Spolarich)
Tue Apr 16 14:03:34 1996
Date: Tue, 16 Apr 1996 10:46:32 -0400 (EDT)
From: "Brian W. Spolarich" <briansp@ans.net>
To: "Daniel W. Woycke" <woycke@mitre.org>
cc: "Deloach, Scott D. SSgt" <DeloachS@emh.aon.af.mil>,
www-security <www-security@ns2.rutgers.edu>
In-Reply-To: <v01510110ad994037790f@[128.29.140.151]>
Errors-To: owner-www-security@ns2.rutgers.edu
On Tue, 16 Apr 1996, Daniel W. Woycke wrote:
> The establish keyword used above has been a problem for Cisco. It is
> probably difficult to get the implementation right. There was a CERT
> advisory against using it because it doesn't always work. I don't know if
> this is true in the latest release of IOS or not, but it is a known
> problem. Usually the solution is to not use the established keyword.
This is fixed in 10.3(4) and later, according to the Cisco Bug reports
database.
-brian
--
Brian W. Spolarich - ANS CO+RE Systems - briansp@ans.net - (313)677-7311
We're Starfleet officers...weird is part of the job.
