One thing I didn't mention is that all passwords one the routers are always
changed to 'cisco' beforehand, and then changed back when done. The dial-up
connection is only there so long as my laptop is, plus I can see what IP
connects, and it's limited to only that single connection. It's not just an
open connection sitting around all the time, although these are important
security considerations for someone else who might put up a permanent
connection.
For any permanent connections, we always use SSH tunnels and/or encrypted
Citrix clients.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Cisco resources: http://r2cisco.artoo.net/
""Erick B."" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > That is amazing. But in this case the company had a
> > lot of security, it
> > sounds like. It was not possible to get into the
> > routers until this guy
> > opened up a backdoor and let Cisco engineers Telnet
> > in over a dial-up line
> > connected to his PC. I can't believe Cisco engineers
> > would thwart their
> > customer's security policy in that way. I think the
> > story sounds fishy.
>
> It depends. I work in a phone support role very
> similar to Cisco TAC but supporting multiple vendors.
> Vendors and other support groups often need some
> access to the customers networks if it calls for it. A
> majority is PPP dialup into customers own
> infrastructure, sometimes setting up temporary
> accounts, over the public internet (telnet, vpn, ssh).
> I've seen heavily secure networks (no access at all)
> to networks with no security. On the ones with no
> security I defiantly make the customer aware of it and
> have them correct it.
>
> > Priscilla
>
> Erick
>
> __________________________________________________
> Do You Yahoo!?
> Get email at your own domain with Yahoo! Mail.
> http://personal.mail.yahoo.com/
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
