Re: NISCC Vulnerability Advisory 236929: Vulnerability Issues in TCP

To: Florian Weimer <fw@xxxxxxxxxxxxx>
Subject: Re: NISCC Vulnerability Advisory 236929: Vulnerability Issues in TCP
From: Bob Beck <beck@xxxxxxxxxxxxxxxxxxxx>
Date: Tue, 11 May 2004 16:50:59 -0600
Cc: David Ahmad <da@xxxxxxxxxxxxxxxxx>, bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <87n04fmcra.fsf@xxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mail-followup-to: Florian Weimer <fw@xxxxxxxxxxxxx>, David Ahmad <da@xxxxxxxxxxxxxxxxx>, bugtraq@xxxxxxxxxxxxxxxxx
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20040420173902.GB16835@xxxxxxxxxxxxxxxxx> <87n04fmcra.fsf@xxxxxxxxxxxxx>
User-agent: Mutt/1.5.6i

> > http://www.ietf.org/internet-drafts/draft-ietf-tcpm-tcpsecure-00.txt
> 
> In the meantime, the IETF has disclosed the following IPR statement
> from Cisco:
> 
> <http://www.ietf.org/ietf/IPR/cisco-ipr-draft-ietf-tcpm-tcpsecure.txt>

        Translation - BOHICA, Cisco doesn't want people writing compatible
free network stacks, they want to patent TCP. RAND basically means no
free software, you must license on some terms. So we end up with
stupid situations like we did with VRRP (see
http://www.openbsd.org/lyrics.html for that sordid tale), and the IETF
will roll over and piddle on itself insted of standing up to this
nonsense like W3C does.  This is nasty. 

        -Bob

Follow-Ups:
- Re: NISCC Vulnerability Advisory 236929: Vulnerability Issues in TCP
  - From: Darren Reed

References:
- NISCC Vulnerability Advisory 236929: Vulnerability Issues in TCP
  - From: David Ahmad
- Re: NISCC Vulnerability Advisory 236929: Vulnerability Issues in TCP
  - From: Florian Weimer

Prev by Date: [OpenPKG-SA-2004.021] OpenPKG Security Advisory (apache)
Next by Date: OpenServer 5.0.5 OpenServer 5.0.6 OpenServer 5.0.7 : X sessions which are not started by scologin cannot use the X authorization protocol
Previous by thread: Re: NISCC Vulnerability Advisory 236929: Vulnerability Issues in TCP
Next by thread: Re: NISCC Vulnerability Advisory 236929: Vulnerability Issues in TCP
Index(es):
- Date
- Thread