RE: Things we love about guys who say the certs "dont prove you

From: Travis Niedens <niedentj_at_hotmail.com>
Date: Wed, 22 Dec 2010 21:49:51 -0800

I've seen people get fired for less than that.

That information gave enough for someone to spoof to get into their network.
From a security perspective, not a plain route/switch perspective, that
wasn't nice. You can also use the information to glean more about the
companies on each side and run from there with other attacks.

Hmmmm

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
Marcin Zgola
Sent: Wednesday, December 22, 2010 9:45 PM
To: Travis Niedens; 'Joseph L. Brunner'; ccielab_at_groupstudy.com
Subject: RE: Things we love about guys who say the certs "dont prove you
know cisco"

there is nothing wrong with that, depends on their firewall configuration.

Marcin Zgola
Internetwork Lead
CCIE #18676
Netrix, LLC
http://www.netrixllc.com
Ph. 847-964-5300
Fax.: 847-964-5350

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
Travis Niedens
Sent: Wednesday, December 22, 2010 11:21 PM
To: 'Joseph L. Brunner'; ccielab_at_groupstudy.com
Subject: RE: Things we love about guys who say the certs "dont prove you
know cisco"

I'm certain that the customer really appreciates their configuration items
being posted in a public forum as well. Could have at least obfuscated the
IP info.

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
Joseph L. Brunner
Sent: Wednesday, December 22, 2010 9:11 PM
To: ccielab_at_groupstudy.com
Subject: OT: Things we love about guys who say the certs "dont prove you
know cisco"

I'll start;

Saw this today in a firewall:

access-list outside_allowed_in permit ip host 209.214.205.10 host
38.104.11.13
access-list outside_allowed_in permit gre host 209.214.205.10 host
38.104.11.13
access-list outside_allowed_in permit icmp host 209.214.205.10 host
38.104.11.13

.
.
.

access-group outside_allowed_in in interface outside

LOL

Blogs and organic groups at http://www.ccie.net
Received on Wed Dec 22 2010 - 21:49:51 ART

This archive was generated by hypermail 2.2.0 : Sat Jan 01 2011 - 09:37:49 ART