[71066] in North American Network Operators' Group
Re: IT security people sleep well
daemon@ATHENA.MIT.EDU (Stephen Sprunk)
Mon Jun 7 21:48:14 2004
From: "Stephen Sprunk" <stephen@sprunk.org>
To: "Priscilla Oppenheimer" <po@priscilla.com>
Cc: "North American Noise and Off-topic Gripes" <nanog@merit.edu>
Date: Mon, 7 Jun 2004 20:39:28 -0500
Errors-To: owner-nanog-outgoing@merit.edu
Thus spake "Priscilla Oppenheimer" <po@priscilla.com>
> It's egregious that SSH isn't standard in all IOS images, especially
> when you consider that choosing the right image is almost an
> NP-complete problem even with feature navigator! :-)
There are plenty of folks at Vendor C that would love crypto in every image,
but that would run afoul of export regulations; the BXA has lightened up,
particularly for open source projects, but it's still not trivial to export
commercial crypto.
Vendor C's anemic flash and RAM limitations in various platforms also
restricts what's possible to put in a default image. The code continues to
bloat, so it's only going to get worse.
S
Stephen Sprunk "Stupid people surround themselves with smart
CCIE #3723 people. Smart people surround themselves with
K5SSS smart people who disagree with them." --Aaron Sorkin
