Is anyone actually USING IP QoS?
Vadim Antonov
avg at kotovnik.com
Wed Jun 16 17:31:03 UTC 1999
Brett_Watson at enron.net wrote:
>i'll give you that. however, caches tend to run under unix-like os's which
>are multi-user and multi-service machines. they can be susceptible to DoS
>attacks, and can be running services listening on a port which can
>potentially be "hacked". my only point is that you are trading a set of
>security issues in multicast for *different* security issues with a cache.
A Unix machine can be secured a lot better than any commercial router.
For one, you can get a source code from it and see what the hell it is
doing and fix discovered security holes ASAP.
Second, just run SSH or Kerberos. SSH on cisco, anyone? Nyah.
--vadim
More information about the NANOG
mailing list