[j-nsp] vulnerability fix not available for 8.5 ?

Chuck Anderson cra at WPI.EDU
Thu Jan 7 15:29:04 EST 2010


On Thu, Jan 07, 2010 at 03:14:17PM -0500, Chuck Anderson wrote:
> On Thu, Jan 07, 2010 at 01:55:21PM -0600, Kevin Hunt wrote:
> > I just logged in and 8.5r4.2 seems to be the same build I have now, which is
> > prior to 01/2009.
> > Anyone gotten any word on a fix for it ?  We don't want to upgrade to 9
> > because of the possible removal of the GE-SX-B drivers and the non-support
> > of our older FPCs...
> 
> Contact JTAC for the 8.5 service release.

I have to point out that JTAC isn't on the ball with this.  I called 
to get the fixed release and the engineer didn't know the where to 
find it and had to go ask someone else who "might not be around so it 
may take a while for the answer"...  Given the high profile of these 
security advisories, you would think JTAC would have been briefed in 
advance to be able to immediately answer all the common questions like 
"Where do I download the fix?".


More information about the juniper-nsp mailing list