Browsing articles from "April, 2009"
Apr
29
2009

Mexico Global Talent Acceleration Program

Cisco announced that its Global Talent Acceleration Program (GTAP) will be available in Latin America for the first time. The Mexico GTAP provides learning and development opportunities for Cisco engineers, recent graduates and established professionals in the industry. Recognizing that a strong pool of talented network engineering skills is critical to increasing a country’s overall productivity, Cisco is making an initial investment of more than $1 million in training programs in the first six months alone. The first GTAP courses in Mexico City are scheduled to begin in May 2009. Initially, the GTAP Academy in Mexico City will focus on [...]

Apr
26
2009

Cisco ASA WebVPN Cross Site Scripting Vulnerability

Cisco ASA is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site and to steal cookie-based authentication credentials. Cisco ASA software versions 8.0.4(2B) and prior running on ASA 5500 Series Adaptive Security Appliances are vulnerable.

Apr
16
2009

Tips for securing Cisco administrative access

In this article I would explain some tips for securing Cisco administrative access. When creating passwords, keep these rules in mind: Make passwords lengthy Passwords should combine letters, numbers, and symbols. Passwords should not use dictionary words Change passwords as often as possible Strong passwords are the primary defense against unauthorized access to your router. The best way to manage passwords is to maintain them on an AAA server, but not all people can have/manage a AAA server. Cisco provides a number of enhanced features that allow you to increase the security of your passwords. For the basic configuration read [...]

Apr
14
2009

Cisco to acquire Tidal Software

Cisco announced its intent to acquire privately held Tidal Software, Inc.  Based in Palo Alto, Calif., and Houston, Tidal Software is the creator of intelligent application management and automation solutions that will advance Cisco’s data center strategy by enhancing product and service delivery offerings.  

Apr
13
2009

Multiple Vulnerabilities in Cisco ASA / PIX security

Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances. Vulnerable Products The following is a list of the products affected by each vulnerability as described in detail within this advisory. VPN Authentication Bypass Vulnerability Cisco ASA or Cisco PIX security appliances that are configured for IPsec or SSL-based remote access VPN and have the Override Account Disabled feature enabled are affected by this vulnerability. Note:  The Override Account Disabled feature was introduced in Cisco ASA software version 7.1(1). Cisco ASA and PIX software versions 7.1, 7.2, 8.0, and 8.1 are affected by [...]

Apr
6
2009

Banner, what is that?

One of the things that usually are not implemented by the network administrator is the banner; but what and why use it? The banner is a feature used not only on Cisco systems but also in other systems like Unix, Linux and so on. It permits to define a text that it is displayed in some cases, for example when you log in a router via SSH. There are two main reasons to implement banner on our router/switch: Banner messages should be used to warn would-be intruders that they are not welcome on your network. Banner are useful to quickly [...]