[186450] in North American Network Operators' Group
[CVE-2015-7755] Backdoor in Juniper/ScreenOS
daemon@ATHENA.MIT.EDU (Stephane Bortzmeyer)
Fri Dec 18 22:18:07 2015
X-Original-To: nanog@nanog.org
Date: Fri, 18 Dec 2015 09:28:11 +0100
From: Stephane Bortzmeyer <bortzmeyer@nic.fr>
To: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
http://forums.juniper.net/t5/Security-Incident-Response/Important-Announcement-about-ScreenOS/ba-p/285554
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10713&cat=SIRT_1&actp=LIST
Should we blame Juniper for letting a git repository open to
"unauthorized code" or should we congratulate them for their frankness
(few corporations would have admitted the problem)?
