For smaller operations I think just disabling SNMP is safer due to constant bugs and issues.
On the other hand bigger operations, you gotta monitor your devices. But now you’re open to the can of worms.
Daydream: Journalists start ending such articles with "This is the Nth critical security flaw for Cisco in just the past year. Network security professionals we spoke to agree that network equipment vendors X, Y, and Z all have far better track records than Cisco."
duxup•1h ago
It became clear to me over time that the pattern at that company was to direct the less great engineering resources to SNMP...
hylaride•1h ago
Anyways, Cisco hasn’t done great engineering pretty much since the dotcom bust. They’re now essentially a giant PE firm that grows through acquisitions and then milks them dry. It’s a classic case of the accountants took over.
FuriouslyAdrift•1h ago
Our_Benefactors•10m ago
That was by far the most egregious example I’ve encountered of “we are trying to get unpaid labor from our interview process.”
FuriouslyAdrift•8m ago
MangoToupe•58m ago
EDIT: it seems like it was an acquihire of Dybvig and the team working on chez for something under NDA.
rubymancer•24m ago
I was at a startup they acquired ~4 years ago, by now it's just about milked completely dry.
Even though our product is close to industry-leading, they laid off our product manager, then another one, the QA team, and half of the devs. Unsurprisingly the product is falling apart.
It's not a company that attempts to produces value, as with so many others the product is the stock price.
The MBAs are showing some kind of savings on a spreadsheet somewhere though, so I suppose all the sacrifices are worth it.
FuriouslyAdrift•1h ago
Network infrastructure security has a lot of unsolved gotchas and not a lot of industry desire to fix. Most of what everyone interacts with is in an abstracted or virtualized layer on top of the old plumbing.