nanog mailing list archives
RE: Searching for a quote
From: "Keith Medcalf" <kmedcalf () dessus com>
Date: Thu, 12 Mar 2015 23:25:58 -0600
Robustness is desirable from a security perspective. Failure to be liberal in what you accept and not being prepared to deal with malformed input leads to such wonders as the Microsoft bug that led to unexpected/malformed IP datagrams mishandled as "execute payload with system authority". Rather than sloppiness you could also attribute the error to malice -- that it was injected at the specific request of certain government agencies, perhaps under threat, perhaps with just a wink and a nod ... --- Theory is when you know everything but nothing works. Practice is when everything works but no one knows why. Sometimes theory and practice are combined: nothing works and no one knows why.
-----Original Message----- From: NANOG [mailto:nanog-bounces () nanog org] On Behalf Of Michael Thomas Sent: Thursday, 12 March, 2015 18:32 To: nanog () nanog org Subject: Re: Searching for a quote Jon Postel. I'm told that it is out of favor these days in protocol-land, from a security standpoint if nothing else. Mike On 3/12/15 5:24 PM, Tom Paseka wrote:Be conservative in what you send, be liberal in what you accept ^http://en.wikipedia.org/wiki/Robustness_principle On Thu, Mar 12, 2015 at 5:20 PM, Jason Iannone<jason.iannone () gmail com>wrote:There was once a fairly common saying attributed to an early networking pioneer that went something like, "be generous in what you accept, and send only the stuff that should be sent." Does anyone know what I'm talking about or who said it?
Current thread:
- Searching for a quote Jason Iannone (Mar 12)
- Re: Searching for a quote Tom Paseka (Mar 12)
- Re: Searching for a quote Miles Fidelman (Mar 12)
- Re: Searching for a quote Jason Iannone (Mar 12)
- Re: Searching for a quote Michael Thomas (Mar 12)
- Re: Searching for a quote manning bill (Mar 12)
- Re: Searching for a quote Matthew Petach (Mar 15)
- RE: Searching for a quote Keith Medcalf (Mar 12)
- Re: Searching for a quote Stephen Satchell (Mar 13)
- Re: Searching for a quote Karl Auer (Mar 13)
- Message not available
- Re: Searching for a quote Larry Sheldon (Mar 14)
- Re: Searching for a quote Miles Fidelman (Mar 12)
- Re: Searching for a quote Tom Paseka (Mar 12)
- Message not available
- Re: Searching for a quote Michael Thomas (Mar 13)
- Re: Searching for a quote Dave Taht (Mar 12)
- Re: Searching for a quote Rich Kulawiec (Mar 12)
- Re: Searching for a quote Jason Iannone (Mar 12)