[192561] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: dilemmas

daemon@ATHENA.MIT.EDU (Royce Williams)
Wed Nov 2 23:04:06 2016

X-Original-To: nanog@nanog.org
In-Reply-To: <CAP-guGWxCda0XS_GHKHRcuAkpmx8Gu1wEjTg0RvhZFdAbLR12A@mail.gmail.com>
From: Royce Williams <royce@techsolvency.com>
Date: Wed, 2 Nov 2016 19:03:32 -0800
To: William Herrin <bill@herrin.us>
Cc: North American Network Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org

On Wed, Nov 2, 2016 at 6:47 PM, William Herrin <bill@herrin.us> wrote:

> On Wed, Nov 2, 2016 at 10:39 PM, Randy Bush <randy@psg.com> wrote:
> > the sysadmins' dilemma: do you install today's critical update or wait a
> > day until the next one is out before you reboot 50 servers?
>
> Neither. You wait for the normal patch cycle because the other six
> barriers to exploiting the vulnerability will work just fine until
> then.
>
> The vulnerability that cuts through every layer of a well engineered
> defense is rare.
>

As is the well-engineered defense.

Royce


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[192561] in North American Network Operators' Group

Re: dilemmas

daemon@ATHENA.MIT.EDU (Royce Williams)Wed Nov 2 23:04:06 2016

daemon@ATHENA.MIT.EDU (Royce Williams)
Wed Nov 2 23:04:06 2016