North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Patching for Cisco vulnerability

  • From: Jared Mauch
  • Date: Fri Jul 18 15:05:26 2003

On Fri, Jul 18, 2003 at 12:29:30PM -0600, Irwin Lazar wrote:
> 
> Just out of curiosity, are folks just applying the Cisco patch or do you go through some sort of testing/validation process to ensure that the patch doesn't cause any other problems?  Given typical change management procedures how long is taking you to get clearance to apply the patch?
> 
> I'm trying here to gauge the length of time before this vulnerability is closed out.


	most providers can easily go from (for example)
12.0(21)S3 to 12.0(21)S7 with less testing than from 12.0(21)S to 12.0(25)S

	The hurdles are still there to maintain the necessary
customer notifications, etc.. but aside from that, I think the
press is doing their job (good or bad) in that most customers are
aware that there's something bad going on and people are moving
to protect the internet infrastructure.

	- jared

-- 
Jared Mauch  | pgp key available via finger from [email protected]
clue++;      | http://puck.nether.net/~jared/  My statements are only mine.