November 21, 2002
Developers, developers, developers

New CERT advisory this morning:

During an NMAP audit of the AOS 5.1.1 code that runs on the Alcatel OmniSwitch 7700/7800 LAN switches, it was determined a telnet server was listening on TCP port number 6778. This was used during development to access the Wind River Vx-Works operating system. Due to an oversight, this access was not removed prior to product release.

*doh*

Posted November 21, 2002 11:23 AM in Funnies
TrackBack URL for this entry: http://www.unix-girl.com/mt/mt-tb.cgi/354
Comments
On November 21, 2002 04:09 PM Jeremy Zawodny added:

That's just damned funny.

#
On November 21, 2002 07:32 PM rooneg added:

i'm surprised shit like this doesn't happen more often.

#
On November 22, 2002 09:46 PM s s added:

hi

#
On November 23, 2002 07:24 AM Scott Johnson added:

Sh*t like this actually happens all the time. And while I'm going to sound like a hard ass here, there is a simple way to solve it -- fire or fine people. High tech seems to operate in a vacuum from the costs that it's errors cause users. Clearly someone at Alcatel fsck'd up. Perhaps if we took a hard line stance and fired the QA manager or Engineer responsible for this people would have less errors.

And I know that it could well have been me. I just don't see a way to bring the needed level of accountability into high tech engineering without some absolutely draconian measures. But this a) makes the company look stupid b) forces CERT to issue an alert c) forces people to check and fix it. There are real costs associated with this kind of screw up.

Sigh. And so it goes. And, note that I've made my share of screw ups over the years too. I'm certainly not perfect in this regard.

#
Trackbacks