[151169] in North American Network Operators' Group
Re: Whitelist of update servers
daemon@ATHENA.MIT.EDU (Randy Bush)
Mon Mar 12 20:52:31 2012
Date: Tue, 13 Mar 2012 09:51:15 +0900
From: Randy Bush <randy@psg.com>
To: Maverick <myeaddress@gmail.com>
In-Reply-To: <CA+vWMo7Ys09Kb9i+v477nDHEseTkLotcNMsdN1Us281rST--VQ@mail.gmail.com>
Cc: North American Network Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
i tend to two defenses
o if it is not an urgent update, i wait to hear from peers that
it is safe.
o i generally do not accept pop-up updates. if one looks tasty,
when possible i navigate directly to the site (yes, i know about
dns spoofing) and download.
randy
