nanog mailing list archives

Re: IXP

From: "Steven M. Bellovin" <smb () cs columbia edu>
Date: Sat, 18 Apr 2009 20:11:14 -0400

On Sat, 18 Apr 2009 21:12:24 +0000
Paul Vixie <vixie () isc org> wrote:

Date: Sat, 18 Apr 2009 13:17:11 -0400
From: "Steven M. Bellovin" <smb () cs columbia edu>

On Sat, 18 Apr 2009 16:58:24 +0000
bmanning () vacation karoshi com wrote:

  i make the claim that simple, clean design and execution
is best. even the security goofs will agree.


"Even"?  *Especially* -- or they're not competent at doing security.


wouldn't a security person also know about

      http://en.wikipedia.org/wiki/ARP_spoofing

I'm taking no position on the underlying argument; I'm simply stating
that simplicity is an essential element for security.  I like a
philosophy I've seen attributed to Einstein: "everything should be as
simple as possible, and no simpler".

And yes, I know about ARP spoofing...


                --Steve Bellovin, http://www.cs.columbia.edu/~smb

Current thread:

Re: IXP, (continued)
- - - Re: IXP Stephen Stuart (Apr 17)
    - Re: IXP Paul Vixie (Apr 18)
    - Re: IXP bmanning (Apr 18)
    - Re: IXP Paul Vixie (Apr 18)
    - Re: IXP bmanning (Apr 18)
    - Re: IXP Steven M. Bellovin (Apr 18)
    - Re: IXP Paul Vixie (Apr 18)
    - Re: IXP bmanning (Apr 18)
    - Re: IXP Jack Bates (Apr 18)
    - Re: IXP Dale Carstensen (Apr 18)
    - Re: IXP Steven M. Bellovin (Apr 18)
    - Re: IXP Paul Ferguson (Apr 18)
    - Re: IXP Roland Dobbins (Apr 18)
    - Re: IXP Sean Donelan (Apr 19)
    - Re: IXP Stephen Stuart (Apr 18)
    - Re: IXP Bill Woodcock (Apr 18)
    - Re: IXP Paul Vixie (Apr 23)
    - Re: IXP Leo Bicknell (Apr 23)
    - Re: IXP Adrian Chadd (Apr 23)
    - Re: IXP Jack Bates (Apr 23)
    - Re: IXP Mike Leber (Apr 23)

(Thread continues...)