[71074] in North American Network Operators' Group
RE: IT security people sleep well
daemon@ATHENA.MIT.EDU (Edward B. Dreger)
Mon Jun 7 23:08:14 2004
Date: Tue, 8 Jun 2004 03:06:04 +0000 (GMT)
From: "Edward B. Dreger" <eddy+public+spam@noc.everquick.net>
To: nanog@merit.edu
In-Reply-To: <EFE80D82AA4F264FB24E73BEAF72FC9503E724@EXCHANGE5.corp.ptd.net>
Errors-To: owner-nanog-outgoing@merit.edu
JF> Date: Mon, 7 Jun 2004 22:31:59 -0400
JF> From: Jason Frisvold
JF> I don't see why they can't roll it into every ios that runs
JF> on a router capable of ssh. Ssh and sshd on my linux system
JF> barely break 500k compiled... And there's a TON of
JF> functionality in there that isn't required on a router. It
JF> would seem that you could get ssh put into these code trains
JF> in under 500k ...
Dynamic linking might be cheating. Static linking might be
pessimistic. Probably best to compare BSD "crunchgen" images
with and without ssh/sshd. (2MB total for statically-linked ssh
and sshd as I compile it.)
JF> Personally, I like having a little wiggle room in the
JF> flash... Putting an image on there that occupies the entire
JF> flash is a bad thing...
You haven't lived life to its fullest until you need to load a
boot image remotely via YModem. ;)
Eddy
--
EverQuick Internet - http://www.everquick.net/
A division of Brotsman & Dreger, Inc. - http://www.brotsman.com/
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 785 865 5885 Lawrence and [inter]national
Phone: +1 316 794 8922 Wichita
_________________________________________________________________
DO NOT send mail to the following addresses :
blacklist@brics.com -or- alfra@intc.net -or- curbjmp@intc.net
Sending mail to spambait addresses is a great way to get blocked.
