On Thu, 22 Nov 2001, Mike Hoskins wrote: > They do. Read their site. Follow instructions.
Most of their customers don't even know to look on their site. > > > Guess it's too much to ask for a world where Cisco sends its > > customers e-mail from a server that detects the bug and sicks the sales > > reptiles on them. > > If any vendor did this (sending unsolicited packets into a network which, > in turn, generated sales calls), there'd by a lot of unhappy campers. In > general, things like this don't scale well and just aren't guaranteed to > work. E-mail is generally unsolicited- sending e-mail for this particular thing in this particular way is perfectly within the RFCs. In absence of a recall notice system, it's not that horrible. Folks who would get unhappy should be *more* unhappy that they're obviously not staffed correctly. Personally, I think it's about time that most product vendors started beating their customers who are't doing things well- it'd make things easier for those who are. I'm all for automatic updates of Windows and RedHat systems too- if you're smart enough to turn off the feature, then you're smart enough not to get the e-mail and you're smart enough to act responsibly. > I think researching bugs, fixing them, documenting them, and publishing > the results on the (easily searchable) web are all good and noble steps on > Cisco's part. Yep- but they fail to address the moron issue- and while it's arguably not Cisco's problem to address, if both Cisco and MS did we'd have a lot better Net to play on. > I don't just use Cisco products. I don't believe Cisco products are > flawless. However, I believe a lot of the things in this thread are > 'stupidity' on the part of parties beside Cisco. SUV rollovers are generally stupidity on the part of drivers- that doesn't absolve automobile manufacturers and does affect designs moving forward. > Yes, but you don't have an Internet full of geeks trying to exploit your > VCR... (That'll come after IPv6. ;) For a while it was on an X10 system- so the potential was there- however that misses the point that most computer bugs are operational bugs, not security bugs, so the example still stands :) Paul ----------------------------------------------------------------------------- Paul D. Robertson "My statements in this message are personal opinions [EMAIL PROTECTED] which may have no basis whatsoever in fact." _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
