RE: Unauthorised switchport access
- From: "Murda Mcloud" <murdamcloud@xxxxxxxxxxx>
- Date: Wed, 15 Nov 2006 09:43:32 +1000
If I understand you correctly, then yes, anyone would be able to get an IP
and away they go. Now, that means the next thing would be to start
enumertaing servers etc if they could even if they are not on the domain(if
you're using windows). So it is definitely a foot in the door type
scenario-and to be honest, the people to mistrust the most are the techie
types who no doubt would have access to the WC from other orgs.
Real world example; someone (possibly)from the company on the floor above us
was broadcasting a wireless access point-we kept seeing a SSID of our
company name and it seemed setup to allow unauthenticated access to some
'network'. Our company name is pretty unique so chances are...
I guess you'd have to look at some kind of 802.1x/RADIUS option-there may be
commercial apps that do this kind of 'don't give an ip unless authenticated
first', I'm pretty sure there are open source ones.
Also is there some way you could put a locked cabinet inside the WC? Just
for you? In my mind, it would be worth it.
-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On
Behalf Of gary.shaw@xxxxxxxxxxxx
Sent: Tuesday, November 14, 2006 7:36 PM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: Unauthorised switchport access
Guys
I am responsible for several LANs that include sharing WCs with other
organisations, and therefore access to my 3750 switches in unlocked
cabinets.
I have no port security enabled and the ports are not shut down.
I would like to know the security implications of having unused switchports
available to anyone eg with a laptop & DHCP configured?
Are there any simple pentests i could complete myself?
Is my organisation's network a sitting duck??
Thanks in advance!
---------------------------------------------------------------------------
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
---------------------------------------------------------------------------
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
- References:
- Unauthorised switchport access
- From: gary . shaw
- Unauthorised switchport access
- Prev by Date: network based spyware scanner
- Next by Date: RE: full-disk-encryption for linux ?
- Previous by thread: Re: Unauthorised switchport access
- Next by thread: RE: Unauthorised switchport access
- Index(es):
Relevant Pages
|
