Jim Duncan wrote:
>
> Mikael Olsson writes:
> >
> > Start putting some pressure on your firewall vendors to get good
> > fixes out, people.
>
> And the correct way to notify Cisco is [Ta-DAH!] contact the Cisco Systems
> Product Security Incident Response Team. The URL is in my .sig, below.
>
Sorry about that, man. I wasn't the one that confirmed the PIX
vulnerability, I just relayed the finding to this forum since I
feel somewhat responsible for this mess. (ack).
I guess I just assumed that whoever posted the finding had done
the Right Thing(tm). It appears he hadn't. :-P
So, let me correct myself:
In cases where your firewall vendor seems unresponsive and sticks
to the marketing hype "our firewall will protect you against anything",
go for the jugular. With vendors known to be responsive - give 'em
a chance to do something about the problem, just as Jim was saying.
Regards,
/Mike
--
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 �RNSK�LDSVIK
Phone: +46 (0)660 105 50 Fax: +46 (0)660 122 50
Mobile: +46 (0)70 66 77 636
WWW: http://www.enternet.se E-mail: [EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
