perfSONAR User Q&A and Other Discussion

["Merillat, Eric" <>]

Like any other "free" software tools it is up to the end-user to patch and 
maintain their installation.  No one is going to do that for you.  If you are 
not capable of maintaining the installation then you should probably find 
something else that is more suited to your environment.  Even commercial 
products are going to require you to apply regular patches when security 
issues like this come up.  It is just part of doing business.

Eric Merillat
Sr. IP Engineer
US Signal Company
201 Ionia Avenue SW
Grand Rapids, MI 49503
P: (616)988.7490
C: (616)558.5406
www.ussignalcom.com

-----Original Message-----
From: 

 
[mailto:]
 On Behalf Of Stefan Piperov
Sent: Thursday, October 2, 2014 8:19 AM
To: 

Subject: Re: [perfsonar-user] a shellshocked experience



On Wed, 1 Oct 2014, Jason Zurawski wrote:

> - As a P.S. to the previous bullet - perfSONAR is not an appliance...

Jason, are you not afraid that a statement like this will push away many 
users? In our collaboration (CMS) perfSONAR was recommended as a _tool_ for 
diagnosing network problems. A (good) tool normally does not require 
maintenance or babysitting.

If I am to spend any significant amount of time (like patching the system 
twice per day, as suggested in one of the responses), I'd rather not use 
perfSONAR at all.

My server has been hacked already twice, which puts me in a really bad 
situation in relation to the network security people.
Plus the machine was found 'frozen' a couple of more times during this last 
year that I have uesd perfSONAR.
Quite disappointing.

Regards,
Stefan.