Re: OT - Terry Childs, CCIE#14018 from Narbik Kocharians on 2010-08-10 (Ccielab archives 08/2010)

From: Narbik Kocharians <narbikk_at_gmail.com>
Date: Tue, 10 Aug 2010 13:46:36 -0700

I think prison is NOT the best choice for people like this guy, they should
force him to climb on a telegraph pole in IRAQ wearing a T-shirt that tells
everyone off. Keep him there for a day or two, he will change his attitude
very fast.

On Tue, Aug 10, 2010 at 1:11 PM, Sorin Platon <sorin.platon_at_gmail.com>wrote:

> Yes I will lock everyone out of the network since I'm the god ...
>
> I'm sorry for using such rough words for fragile and soft ears
>
> He does need help, it will be provided by the state so he should take
> that opportunity
>
> Have you ever worked with Terry kind ?
> The never share I'm the best type ?
>
> Well I did and I'm NOT surprised by his dumb actions, at least he
> hopefully got his lesson and people will learn from his mistake.
>
> The city has its faults that have been invalidate by his actions.
>
> So the manager is not qualified to have the passwords..but the mayor is....
>
>
>
> On 8/10/10, Travis Niedens <niedentj_at_hotmail.com> wrote:
> > I think you and terry have a lot in common based off your third sentance.
> > Perhaps you should learn from his approach to life. Travis
> >
> >
> > -----Original Message-----
> > From: Sorin Platon
> > Sent: 8/10/2010 7:38:48 PM
> > To: Rohit Ghodke , Paul Cosgrove , Carlos G Mendioroz , Lloyd J. Rochon
> III
> > ,
> > Garth Bryden , Jack Router , Adrian Brayton , Cisco certification
> > Subject: Re: OT - Terry Childs, CCIE#14018
> > That was very one sided
> >
> > Nothing can excuse the fact that he didn't give the passwords when asked
> to.
> >
> > Classical asshole that thinks he's always right and everybody else has
> > no knowledge
> >
> > He should consider the opportunity and seek mental health
> >
> > On 8/10/10, Rohit Ghodke <rohit.nw_at_gmail.com> wrote:
> >> http://www.infoworld.com/print/37286
> >>
> >
> http://www.infoworld.com/d/adventures-in-it/why-san-franciscos-network-admin-
> > went-rogue-286?page=0,0
> >>
> >>
> >>
> >> On Sun, Aug 8, 2010 at 12:07 PM, Paul Cosgrove <
> >> paul.cosgrove.groupstudy_at_gmail.com> wrote:
> >>
> >>> Hi Carlos,
> >>>
> >>> You may have been a little quick to assume my opinion there, despite my
> >>> not
> >>> expressing any. Like yourself I have read about the case, and also
> >>> discussed technical aspects of it with a person who knew the details
> >>> (their
> >>> company was called in to help). My post was mainly about a general
> >>> approach
> >>> to security incidents, and the aspects related to this specific case
> are
> >>> consistent with what I was told.
> >>>
> >>> I've never met Terry Childs and keep an open mind about his personality
> >>> and
> >>> motivation since, like yourself, I only have second hand information
> >>> about
> >>> him.
> >>>
> >>> Paul
> >>>
> >>>
> >>> On Sun, Aug 8, 2010 at 2:30 PM, Carlos G Mendioroz <tron_at_huapi.ba.ar>
> >>> wrote:
> >>>
> >>> > Just courious, have you read about this before this post ?
> >>> > I read an article a long time ago about him (IEEE spectrum, if
> >>> > I remember it correctly), where he was characterized as an over
> jealous
> >>> > engineer that would not let non qualified people
> >>> > access the net to keep it working.
> >>> > There are always many sides to the stories, and I'm amazed at how
> fast
> >>> > people take positions (polarize ?) w/o much info...
> >>> >
> >>> > -Carlos
> >>> >
> >>> > Paul Cosgrove @ 8/08/2010 9:27 -0300 dixit:
> >>> > > If you are maliciously locked out of devices, your response is
> likely
> >>> to
> >>> > be
> >>> > > proportional to your level of paranoia about what else the
> >>> > > perpetrator
> >>> > may
> >>> > > have done to complicate your life. My understanding is that the
> saved
> >>> > state
> >>> > > of the devices was unclear, and there were unusual changes made
> >>> > > beside
> >>> > > modifying passwords which, whether it was intended or not, hampered
> >>> > > the
> >>> > > initial evaluation and added to concerns that there might be other
> >>> > > surprises.
> >>> > >
> >>> > > If you believe there is a risk someone has turned your production
> >>> network
> >>> > > into a troubleshooting lab, but the system is operational and does
> >>> > > not
> >>> > > appear to be deteriorating, then you will probably start by
> assessing
> >>> the
> >>> > > state using safe techniques. You will also have to formulate a
> >>> > > recovery
> >>> > > plan, including plenty of 'what if's?' to cater for unknowns.
> >>> Reloading
> >>> > > devices could result in the config being cleared, so you would need
> >>> > > to
> >>> > > determine what the impact to the network will be if that occurs and
> >>> > prepare
> >>> > > for that. Planning for the worst, you might include provisions
> incase
> >>> > > malicious changes have been made on the alternative paths, and they
> >>> only
> >>> > > become visible when traffic shifts (etc.). Was a high profile
> event,
> >>> > > so
> >>> > any
> >>> > > mistakes may also have been high profile.
> >>> > >
> >>> > > They were treading very carefully, which took time and money.
> >>> > >
> >>> > > Paul.
> >>> > >
> >>> > > On Sun, Aug 8, 2010 at 4:49 AM, Lloyd J. Rochon III
> >>> > > <lrochon_at_sbcglobal.net>wrote:
> >>> > >
> >>> > >> Agreed but I was just going off their urgency and lack of apparent
> >>> > >> technical knowledge. I think they were in panic mode and spare no
> >>> > expense
> >>> > >> mode.
> >>> > >>
> >>> > >> Regards,
> >>> > >>
> >>> > >> Lloyd Rochon
> >>> > >> Lloyd J. Rochon III
> >>> > >>
> >>> > >> -----Original Message-----
> >>> > >> From: Garth Bryden <hacked.the.planet.on.28.8k.dialup_at_gmail.com>
> >>> > >> Date: Sun, 8 Aug 2010 11:29:46
> >>> > >> To: <lrochon_at_sbcglobal.net>
> >>> > >> Cc: Jack Router<pan.router_at_gmail.com>; Adrian Brayton<
> >>> > abrayton_at_gmail.com>;
> >>> > >> Cisco certification<ccielab_at_groupstudy.com>
> >>> > >> Subject: Re: OT - Terry Childs, CCIE#14018
> >>> > >>
> >>> > >> Well I've read (but not had the courage to test) that if you press
> >>> > control
> >>> > >> break when you are booting with password recovery disabled you can
> >>> > >> get
> >>> > into
> >>> > >> the device, just with factory defaults.... I guess if there were
> no
> >>> > >> passwords there woulda been no backup configurations which meant
> >>> > >> long
> >>> > >> nights
> >>> > >> and lots of coffee restoring network services; whoopie
> >>> > >>
> >>> > >> On Sun, Aug 8, 2010 at 11:26 AM, Lloyd J. Rochon III
> >>> > >> <lrochon_at_sbcglobal.net>wrote:
> >>> > >>
> >>> > >>> It also could have been the "no service password-recovery"
> command
> >>> > >>> on
> >>> > key
> >>> > >>> devices which caused costly replacements.
> >>> > >>>
> >>> > >>> Regards,
> >>> > >>>
> >>> > >>> Lloyd Rochon - CCIE
> >>> > >>> Lloyd J. Rochon III
> >>> > >>>
> >>> > >>> -----Original Message-----
> >>> > >>> From: Garth Bryden <hacked.the.planet.on.28.8k.dialup_at_gmail.com>
> >>> > >>> Sender: nobody_at_groupstudy.com
> >>> > >>> Date: Sun, 8 Aug 2010 11:09:18
> >>> > >>> To: Jack Router<pan.router_at_gmail.com>
> >>> > >>> Reply-To: Garth Bryden
> >>> > >>> <hacked.the.planet.on.28.8k.dialup_at_gmail.com>
> >>> > >>> Cc: Adrian Brayton<abrayton_at_gmail.com>; Cisco certification<
> >>> > >>> ccielab_at_groupstudy.com>
> >>> > >>> Subject: Re: OT - Terry Childs, CCIE#14018
> >>> > >>>
> >>> > >>> The $900,000 would be over the top but the costs they are
> >>> > >>> calculating
> >>> I
> >>> > >>> assume won't be just for the password recovery process. Remember
> >>> there
> >>> > is
> >>> > >>> downtime involved to do this, they are most likely claiming
> >>> > compensation
> >>> > >>> for
> >>> > >>> lost revenue etc.
> >>> > >>>
> >>> > >>> On Sun, Aug 8, 2010 at 11:03 AM, Jack Router <
> pan.router_at_gmail.com>
> >>> > >> wrote:
> >>> > >>>> How can you spend $900000 in 12 days ? Its 75K a day !!!! Did
> they
> >>> > hire
> >>> > >>> 31
> >>> > >>>> CCIEs full time for 12 days, assuming 300$/hour wage ? Obviously
> >>> Terry
> >>> > >>> was
> >>> > >>>> right saying his boss was not qualified to have a password.
> >>> > >>>> BTW, how do you get a job like Terry's boss ? What
> qualifications
> >>> are
> >>> > >>>> required ?
> >>> > >>>>
> >>> > >>>> -----Original Message-----
> >>> > >>>> From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On
> >>> Behalf
> >>> > >> Of
> >>> > >>>> Adrian Brayton
> >>> > >>>> Sent: 7-Aug-10 13:59
> >>> > >>>> To: Cisco certification
> >>> > >>>> Subject: OT - Terry Childs, CCIE#14018
> >>> > >>>>
> >>> > >>>>
> >>> > >>>>
> >>> > >>
> >>> >
> >>>
> >
> http://www.businessweek.com/idg/2010-08-07/network-admin-terry-childs-gets-4
> >>> > >>>> -year-sentence.html
> >>> > >>>>
> >>> > >>>>
> >>> > >>>> Blogs and organic groups at http://www.ccie.net
> >>> > >>>>
> >>> > >>>>
> >>> >
> _______________________________________________________________________
> >>> > >>>> Subscription information may be found at:
> >>> > >>>> http://www.groupstudy.com/list/CCIELab.html
> >>> > >>>>
> >>> > >>>>
> >>> > >>>> Blogs and organic groups at http://www.ccie.net
> >>> > >>>>
> >>> > >>>>
> >>> >
> _______________________________________________________________________
> >>> > >>>> Subscription information may be found at:
> >>> > >>>> http://www.groupstudy.com/list/CCIELab.html
> >>> > >>>
> >>> > >>> Blogs and organic groups at http://www.ccie.net
> >>> > >>>
> >>> > >>>
> >>> _______________________________________________________________________
> >>> > >>> Subscription information may be found at:
> >>> > >>> http://www.groupstudy.com/list/CCIELab.html
> >>> > >>
> >>> > >> Blogs and organic groups at http://www.ccie.net
> >>> > >>
> >>> > >>
> >>> _______________________________________________________________________
> >>> > >> Subscription information may be found at:
> >>> > >> http://www.groupstudy.com/list/CCIELab.html
> >>> > >
> >>> > >
> >>> > > Blogs and organic groups at http://www.ccie.net
> >>> > >
> >>> > >
> > _______________________________________________________________________
> >>> > > Subscription information may be found at:
> >>> > > http://www.groupstudy.com/list/CCIELab.html
> >>> > >
> >>> > >
> >>> > >
> >>> > >
> >>> > >
> >>> > >
> >>> > >
> >>> >
> >>> > --
> >>> > Carlos G Mendioroz <tron_at_huapi.ba.ar> LW7 EQI Argentina
> >>>
> >>>
> >>> Blogs and organic groups at http://www.ccie.net
> >>>
> >>> _______________________________________________________________________
> >>> Subscription information may be found at:
> >>> http://www.groupstudy.com/list/CCIELab.html
> >>
> >>
> >> Blogs and organic groups at http://www.ccie.net
> >>
> >> _______________________________________________________________________
> >> Subscription information may be found at:
> >> http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>

-- 
Narbik Kocharians
CCSI#30832, CCIE# 12410 (R&S, SP, Security)
www.MicronicsTraining.com
Sr. Technical Instructor
YES! We take Cisco Learning Credits!
Training And Remote Racks available
Blogs and organic groups at http://www.ccie.net

Received on Tue Aug 10 2010 - 13:46:36 ART

This archive was generated by hypermail 2.2.0 : Wed Sep 01 2010 - 11:20:52 ART