RE: OT - Terry Childs, CCIE#14018

All I know is that this ruins my chances of global network domination as
now all cities (and one would hope states) will have to follow some
minimal baseline of common sense : )

Paul (RS/Sec #16842)

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
Narbik Kocharians
Sent: Tuesday, August 10, 2010 4:47 PM
To: Sorin Platon
Cc: Travis Niedens; Rohit Ghodke; Paul Cosgrove; Carlos G Mendioroz;
Lloyd J. Rochon III; Garth Bryden; Jack Router; Adrian Brayton; Cisco
certification
Subject: Re: OT - Terry Childs, CCIE#14018

I think prison is NOT the best choice for people like this guy, they
should
force him to climb on a telegraph pole in IRAQ wearing a T-shirt that
tells
everyone off. Keep him there for a day or two, he will change his
attitude
very fast.

On Tue, Aug 10, 2010 at 1:11 PM, Sorin Platon
<sorin.platon_at_gmail.com>wrote:

> Yes I will lock everyone out of the network since I'm the god ...
>
> I'm sorry for using such rough words for fragile and soft ears
>
> He does need help, it will be provided by the state so he should take
> that opportunity
>
> Have you ever worked with Terry kind ?
> The never share I'm the best type ?
>
> Well I did and I'm NOT surprised by his dumb actions, at least he
> hopefully got his lesson and people will learn from his mistake.
>
> The city has its faults that have been invalidate by his actions.
>
> So the manager is not qualified to have the passwords..but the mayor
is....
>
>
>
> On 8/10/10, Travis Niedens <niedentj_at_hotmail.com> wrote:
> > I think you and terry have a lot in common based off your third
sentance.
> > Perhaps you should learn from his approach to life. Travis
> >
> >
> > -----Original Message-----
> > From: Sorin Platon
> > Sent: 8/10/2010 7:38:48 PM
> > To: Rohit Ghodke , Paul Cosgrove , Carlos G Mendioroz , Lloyd J.
Rochon
> III
> > ,
> > Garth Bryden , Jack Router , Adrian Brayton , Cisco certification
> > Subject: Re: OT - Terry Childs, CCIE#14018
> > That was very one sided
> >
> > Nothing can excuse the fact that he didn't give the passwords when
asked
> to.
> >
> > Classical asshole that thinks he's always right and everybody else
has
> > no knowledge
> >
> > He should consider the opportunity and seek mental health
> >
> > On 8/10/10, Rohit Ghodke <rohit.nw_at_gmail.com> wrote:
> >> http://www.infoworld.com/print/37286
> >>
> >
>
http://www.infoworld.com/d/adventures-in-it/why-san-franciscos-network-a
dmin-
> > went-rogue-286?page=0,0
> >>
> >>
> >>
> >> On Sun, Aug 8, 2010 at 12:07 PM, Paul Cosgrove <
> >> paul.cosgrove.groupstudy_at_gmail.com> wrote:
> >>
> >>> Hi Carlos,
> >>>
> >>> You may have been a little quick to assume my opinion there,
despite my
> >>> not
> >>> expressing any. Like yourself I have read about the case, and
also
> >>> discussed technical aspects of it with a person who knew the
details
> >>> (their
> >>> company was called in to help). My post was mainly about a
general
> >>> approach
> >>> to security incidents, and the aspects related to this specific
case
> are
> >>> consistent with what I was told.
> >>>
> >>> I've never met Terry Childs and keep an open mind about his
personality
> >>> and
> >>> motivation since, like yourself, I only have second hand
information
> >>> about
> >>> him.
> >>>
> >>> Paul
> >>>
> >>>
> >>> On Sun, Aug 8, 2010 at 2:30 PM, Carlos G Mendioroz
<tron_at_huapi.ba.ar>
> >>> wrote:
> >>>
> >>> > Just courious, have you read about this before this post ?
> >>> > I read an article a long time ago about him (IEEE spectrum, if
> >>> > I remember it correctly), where he was characterized as an over
> jealous
> >>> > engineer that would not let non qualified people
> >>> > access the net to keep it working.
> >>> > There are always many sides to the stories, and I'm amazed at
how
> fast
> >>> > people take positions (polarize ?) w/o much info...
> >>> >
> >>> > -Carlos
> >>> >
> >>> > Paul Cosgrove @ 8/08/2010 9:27 -0300 dixit:
> >>> > > If you are maliciously locked out of devices, your response is
> likely
> >>> to
> >>> > be
> >>> > > proportional to your level of paranoia about what else the
> >>> > > perpetrator
> >>> > may
> >>> > > have done to complicate your life. My understanding is that
the
> saved
> >>> > state
> >>> > > of the devices was unclear, and there were unusual changes
made
> >>> > > beside
> >>> > > modifying passwords which, whether it was intended or not,
hampered
> >>> > > the
> >>> > > initial evaluation and added to concerns that there might be
other
> >>> > > surprises.
> >>> > >
> >>> > > If you believe there is a risk someone has turned your
production
> >>> network
> >>> > > into a troubleshooting lab, but the system is operational and
does
> >>> > > not
> >>> > > appear to be deteriorating, then you will probably start by
> assessing
> >>> the
> >>> > > state using safe techniques. You will also have to formulate a
> >>> > > recovery
> >>> > > plan, including plenty of 'what if's?' to cater for unknowns.
> >>> Reloading
> >>> > > devices could result in the config being cleared, so you would
need
> >>> > > to
> >>> > > determine what the impact to the network will be if that
occurs and
> >>> > prepare
> >>> > > for that. Planning for the worst, you might include provisions
> incase
> >>> > > malicious changes have been made on the alternative paths, and
they
> >>> only
> >>> > > become visible when traffic shifts (etc.). Was a high profile
> event,
> >>> > > so
> >>> > any
> >>> > > mistakes may also have been high profile.
> >>> > >
> >>> > > They were treading very carefully, which took time and money.
> >>> > >
> >>> > > Paul.
> >>> > >
> >>> > > On Sun, Aug 8, 2010 at 4:49 AM, Lloyd J. Rochon III
> >>> > > <lrochon_at_sbcglobal.net>wrote:
> >>> > >
> >>> > >> Agreed but I was just going off their urgency and lack of
apparent
> >>> > >> technical knowledge. I think they were in panic mode and
spare no
> >>> > expense
> >>> > >> mode.
> >>> > >>
> >>> > >> Regards,
> >>> > >>
> >>> > >> Lloyd Rochon
> >>> > >> Lloyd J. Rochon III
> >>> > >>
> >>> > >> -----Original Message-----
> >>> > >> From: Garth Bryden
<hacked.the.planet.on.28.8k.dialup_at_gmail.com>
> >>> > >> Date: Sun, 8 Aug 2010 11:29:46
> >>> > >> To: <lrochon_at_sbcglobal.net>
> >>> > >> Cc: Jack Router<pan.router_at_gmail.com>; Adrian Brayton<
> >>> > abrayton_at_gmail.com>;
> >>> > >> Cisco certification<ccielab_at_groupstudy.com>
> >>> > >> Subject: Re: OT - Terry Childs, CCIE#14018
> >>> > >>
> >>> > >> Well I've read (but not had the courage to test) that if you
press
> >>> > control
> >>> > >> break when you are booting with password recovery disabled
you can
> >>> > >> get
> >>> > into
> >>> > >> the device, just with factory defaults.... I guess if there
were
> no
> >>> > >> passwords there woulda been no backup configurations which
meant
> >>> > >> long
> >>> > >> nights
> >>> > >> and lots of coffee restoring network services; whoopie
> >>> > >>
> >>> > >> On Sun, Aug 8, 2010 at 11:26 AM, Lloyd J. Rochon III
> >>> > >> <lrochon_at_sbcglobal.net>wrote:
> >>> > >>
> >>> > >>> It also could have been the "no service password-recovery"
> command
> >>> > >>> on
> >>> > key
> >>> > >>> devices which caused costly replacements.
> >>> > >>>
> >>> > >>> Regards,
> >>> > >>>
> >>> > >>> Lloyd Rochon - CCIE
> >>> > >>> Lloyd J. Rochon III
> >>> > >>>
> >>> > >>> -----Original Message-----
> >>> > >>> From: Garth Bryden
<hacked.the.planet.on.28.8k.dialup_at_gmail.com>
> >>> > >>> Sender: nobody_at_groupstudy.com
> >>> > >>> Date: Sun, 8 Aug 2010 11:09:18
> >>> > >>> To: Jack Router<pan.router_at_gmail.com>
> >>> > >>> Reply-To: Garth Bryden
> >>> > >>> <hacked.the.planet.on.28.8k.dialup_at_gmail.com>
> >>> > >>> Cc: Adrian Brayton<abrayton_at_gmail.com>; Cisco certification<
> >>> > >>> ccielab_at_groupstudy.com>
> >>> > >>> Subject: Re: OT - Terry Childs, CCIE#14018
> >>> > >>>
> >>> > >>> The $900,000 would be over the top but the costs they are
> >>> > >>> calculating
> >>> I
> >>> > >>> assume won't be just for the password recovery process.
Remember
> >>> there
> >>> > is
> >>> > >>> downtime involved to do this, they are most likely claiming
> >>> > compensation
> >>> > >>> for
> >>> > >>> lost revenue etc.
> >>> > >>>
> >>> > >>> On Sun, Aug 8, 2010 at 11:03 AM, Jack Router <
> pan.router_at_gmail.com>
> >>> > >> wrote:
> >>> > >>>> How can you spend $900000 in 12 days ? Its 75K a day !!!!
Did
> they
> >>> > hire
> >>> > >>> 31
> >>> > >>>> CCIEs full time for 12 days, assuming 300$/hour wage ?
Obviously
> >>> Terry
> >>> > >>> was
> >>> > >>>> right saying his boss was not qualified to have a password.
> >>> > >>>> BTW, how do you get a job like Terry's boss ? What
> qualifications
> >>> are
> >>> > >>>> required ?
> >>> > >>>>
> >>> > >>>> -----Original Message-----
> >>> > >>>> From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com]
On
> >>> Behalf
> >>> > >> Of
> >>> > >>>> Adrian Brayton
> >>> > >>>> Sent: 7-Aug-10 13:59
> >>> > >>>> To: Cisco certification
> >>> > >>>> Subject: OT - Terry Childs, CCIE#14018
> >>> > >>>>
> >>> > >>>>
> >>> > >>>>
> >>> > >>
> >>> >
> >>>
> >
>
http://www.businessweek.com/idg/2010-08-07/network-admin-terry-childs-ge
ts-4
> >>> > >>>> -year-sentence.html
> >>> > >>>>
> >>> > >>>>
> >>> > >>>> Blogs and organic groups at http://www.ccie.net
> >>> > >>>>
> >>> > >>>>
> >>> >
>
Received on Tue Aug 10 2010 - 19:23:40 ART