Cisco boxes
From: Sherman H. (shung_at_charter.net)
Date: 10/29/04
- Previous message: Gary: "Re: Debating : FIREWALLS - "Commercial Product" or "Free Software" ?"
- Next in thread: Wilykiote: "Re: Cisco boxes"
- Reply: Wilykiote: "Re: Cisco boxes"
- Reply: Wolfgang Kueter: "Re: Cisco boxes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 28 Oct 2004 19:24:05 -0700
I am reviewing security controls over the Cisco router, PIX, and IDS boxes
and have the following questions.
1. I make a recommendation that telnet should not be used. Instead, use ssh
or pdm (PIX). Does this make sense. Is telnet really so vulnerable?
2. In an IOS command list, I saw some line are marked with <Removed> at the
end. Does this mean this line is marked out?
3. In the IOS command list, all the user names and passwords are marked with
<Removed>. I thought at least one user name need to be there for local
console access. . .
4. In the IOS v12, do we still need to specify 'no service tcp-small-servers
' and 'no service udp-small servers'?
5. In the PIX config, are the following very critical to security?
'no http server enable';
'clear dhcpd' ;
'sysopt security fragguard', 'fragment chain 1 outside';
'ip verify reverse-path interface xxxx';
6. How is Cisco IDS 2410? Any reported vulnerable? It occurred to me that
this device cannot block any packets that meet the signature patterns. Is
this a config issue or the faults from the box? In Cisco website, it is
marked as a discontinued support item.
Would like to hear the expert comments on these questions.
Thanks.
- Previous message: Gary: "Re: Debating : FIREWALLS - "Commercial Product" or "Free Software" ?"
- Next in thread: Wilykiote: "Re: Cisco boxes"
- Reply: Wilykiote: "Re: Cisco boxes"
- Reply: Wolfgang Kueter: "Re: Cisco boxes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
