Sure. 172.16.13.1 & 172.16.15.1. Like I said, nothing was attached to the
internet except my laptop on a dial-up (random IP), with only a single
telnet session allowed in (and reverse nslookup showed it was Cisco).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Cisco resources: http://r2cisco.artoo.net/
""Tony van Ree"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi,
>
> You don't have all the addresses by any chance?
>
> Teunis
>
> On Thursday, January 18, 2001 at 09:44:21 PM, J Roysdon wrote:
>
> > One thing I didn't mention is that all passwords one the routers are
always
> > changed to 'cisco' beforehand, and then changed back when done. The
dial-up
> > connection is only there so long as my laptop is, plus I can see what IP
> > connects, and it's limited to only that single connection. It's not
just an
> > open connection sitting around all the time, although these are
important
> > security considerations for someone else who might put up a permanent
> > connection.
> >
> > For any permanent connections, we always use SSH tunnels and/or
encrypted
> > Citrix clients.
> >
> > --
> > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
> > List email: [EMAIL PROTECTED]
> > Homepage: http://jason.artoo.net/
> > Cisco resources: http://r2cisco.artoo.net/
> >
> >
> > ""Erick B."" <[EMAIL PROTECTED]> wrote in message
> > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > > That is amazing. But in this case the company had a
> > > > lot of security, it
> > > > sounds like. It was not possible to get into the
> > > > routers until this guy
> > > > opened up a backdoor and let Cisco engineers Telnet
> > > > in over a dial-up line
> > > > connected to his PC. I can't believe Cisco engineers
> > > > would thwart their
> > > > customer's security policy in that way. I think the
> > > > story sounds fishy.
> > >
> > > It depends. I work in a phone support role very
> > > similar to Cisco TAC but supporting multiple vendors.
> > > Vendors and other support groups often need some
> > > access to the customers networks if it calls for it. A
> > > majority is PPP dialup into customers own
> > > infrastructure, sometimes setting up temporary
> > > accounts, over the public internet (telnet, vpn, ssh).
> > > I've seen heavily secure networks (no access at all)
> > > to networks with no security. On the ones with no
> > > security I defiantly make the customer aware of it and
> > > have them correct it.
> > >
> > > > Priscilla
> > >
> > > Erick
> > >
> > > __________________________________________________
> > > Do You Yahoo!?
> > > Get email at your own domain with Yahoo! Mail.
> > > http://personal.mail.yahoo.com/
> > >
> > > _________________________________
> > > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> > >
> >
> >
> > _________________________________
> > FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> >
>
>
> --
> www.tasmail.com
>
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
