Hey Chad,
Yes we are talking about the same thing.
It's really up to you if you want to disable CSRF or not. Here is an
entry describing these types of attacks:
http://en.wikipedia.org/wiki/Cross-site_request_forgery
So if your CAM is on the internet and people can reach it, probably not
a good idea to turn it off. But if its on an internal protected subnet,
and you have other safeguards in place, and cannot live with the 15-20
seconds that it takes that page to load, then you can turn it off (this
feature was added in 4.1.3 so it wasn't on before then anyways).
Nate
Chad Smith wrote:
Thanks, Nate. I did read that. Here is the information I was given.
DE provided workaround:
/perfigo/control/tomcat/normal-webapps/admin/WEB-INF/web.xml
+ <!--
<filter-mapping>
<filter-name>CSRFFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
+ -->
Does that seem like something safe to do? Or is this not even the same item
that we're talking about?
-Chad E Smith-
University of Dayton
Network Engineer
On Fri, 18 Jul 2008 15:28:41 -0400, Nathaniel Austin <[EMAIL PROTECTED]>
wrote:
http://www.cisco.com/en/US/docs/security/nac/appliance/release_notes/413/41
3rn.html#wp313177
Chad Smith wrote:
Nate, what are these "security issues"? We had the same slowness and my
TAC
engineer suggested we comment out the CSRFFilters.
-Chad E Smith-
University of Dayton
Network Engineer
On Fri, 18 Jul 2008 12:48:35 -0400, Nathaniel Austin
<[EMAIL PROTECTED]>
wrote:
Hi Wendy,
The cause for issue 1 is the CSRF security enhancements that were made
in 4.1.3.x. If you disable CSRF (not recommended due to security
issues)
the delay goes away.
Last I knew development was looking into it.
Nate
SHIH, WENDY wrote:
Hi,
We just upgraded CAM/CAS from 4.1.1 to 4.132 version with in-band
implantation. We only have 200 users now but are experiencing slowness
issue in CAM. Not sure if you have similar issue or have suggestions
for below:
1. I noticed that when I select either Rules or CCA Report after
upgrade, it takes over 10 to 15 seconds which is very slow in
comparison to before upgrade. The CAM CPU average usage is around 2
-10% but at times peaked to 30% most.
2. In report, I can click on “Export” and save the file but if I
click on “Export (with Text)”, then I receive server out of memory
error. “Apache Tomcat/4.131 Caused by: java.lang.OutOfMemoryError”.
The
CPU peaked to 25% when I run this command.
3. We are not using cisco gear and this is the last upgrade we can
do
on our hardware. I like the new features in 4.132 agent and would like
to
solve this issue before the mass comes back.
Thank you in advance.
Wendy Shih
========================================================================
