Pulse Secure *is* something that is run by enterprises as "their own." It is either a physical appliance or a virtual appliance that you run on your own infrastructure. No different in concept that any other "do it yourself" VPN, other than you actually have enterprise-level support.

This vulnerability is horrible, but it is not like any other piece of software would inherently be better, be it proprietary, open source, or whatever.

What?

What does this *software* vulnerability have to do with where the hardware is made?

This story is about physical VPN servers owned by enterprises that happen to be Pulse Secure appliances (which are basically off the shelf servers running Linux and the VPN software on top).

This is not about a VPN service.
It is not "cloud based"

All of these comments seem to be missing that.

How is running a different piece of software on your own hardware any different that running an appliance? Are you saying that vulnerabilities only exist with hardware/software packages? Are you suggesting that every company that needs VPN features should build their own from scratch to avoid any "third parties" ? That is ridiculous.

I wouldn't use Flash as a gleaming example of something amazing that Apple killed off for the fun of it. Flash was a giant dumpster fire that should have been killed off years before it was.

MythTV has supported CableCARD and 4K for over a decade? Does it even support CableCARD tuners now?

This is either a poorly worded joke, or you have absolutely no clue how network routing works.

Most people will not be going to ARIN for an assignment, they will get addresses from their ISP, just like with IPv4.

For those of us who need to be multi-homed, the one-time fee we pay to ARIN for the allocation is not significant enough for it to be a concern at all. For ISPs, it is essentially free, as you only pay for the larger of the IPv4 or IPv6 fee.

Also, because of multi-homing, and large entities with multiple locations, you cannot attach IP addresses to any physical location.