[24328] in North American Network Operators' Group
Re: Is anyone actually USING IP QoS?
daemon@ATHENA.MIT.EDU (Vadim Antonov)
Wed Jun 16 13:34:06 1999
Date: Wed, 16 Jun 1999 10:31:03 -0700
From: Vadim Antonov <avg@kotovnik.com>
To: Brett_Watson@enron.net, nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
Brett_Watson@enron.net wrote:
>i'll give you that. however, caches tend to run under unix-like os's which
>are multi-user and multi-service machines. they can be susceptible to DoS
>attacks, and can be running services listening on a port which can
>potentially be "hacked". my only point is that you are trading a set of
>security issues in multicast for *different* security issues with a cache.
A Unix machine can be secured a lot better than any commercial router.
For one, you can get a source code from it and see what the hell it is
doing and fix discovered security holes ASAP.
Second, just run SSH or Kerberos. SSH on cisco, anyone? Nyah.
--vadim
