Folks,
Check out this news that's just come in from SANS.
--> {00.20.003} Cisco "enabled" commands available in normal mode
It turns out that Cisco IOS lets users in "normal" mode access commands
that were thought to be restricted to "enabled" mode. In particular,
the "show" command allows normal users to access 62 commands listed only
in enabled mode. In particular, such commands as "show cdp", "show
logging", "show access-lists", and "show vlans" may provide attackers
with extra information.
Change the access level required to use the "show" command by running:
privilege exec level 15 show
Source: Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-05/0027.html
Enjoy
Michael Ibidunni
___________________________________
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
