LISTSERV - CLEANACCESS Archives - LISTSERV.MIAMIOH.EDU

CLEANACCESS Archives

December 2005

CLEANACCESS@LISTSERV.MIAMIOH.EDU

	LISTSERV Archives
	CLEANACCESS Home
	CLEANACCESS December 2005

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: DoS possibilities in the Cisco Clean Access product line
From:	"King, Michael" <[log in to unmask]>
Reply To:	Perfigo SecureSmart and CleanMachines Discussion List <[log in to unmask]>
Date:	Sun, 18 Dec 2005 13:45:15 -0500
Content-Type:	text/plain
Parts/Attachments:	text/plain (73 lines)

80 and 443 are where the vulnerabilities are present.  (Webpages)

The REAL question is... DO you have any files on the manager that you
present to the students?   IE images, files.  If you aren't you could
ACL the entire Manager off from the students.

I know a lot of students out in the world don't particularly like CCA,
and might take the opportunity to give it a bad name on campus, hoping
to try to lead a charge to get rid of it.   

> -----Original Message-----
> From: Perfigo SecureSmart and CleanMachines Discussion List 
> [mailto:[log in to unmask]] On Behalf Of Hague, Jeff
> Sent: Saturday, December 17, 2005 11:10 AM
> To: [log in to unmask]
> Subject: Re: DoS possibilities in the Cisco Clean Access product line
> 
> Does anyone have a quick list of what ACL entries are needed 
> to secure the CAM?
> Thanks!
>  
> Jeff
> 
> ________________________________
> 
> From: Perfigo SecureSmart and CleanMachines Discussion List 
> on behalf of Atif Azim (atif)
> Sent: Fri 12/16/2005 7:30 PM
> To: [log in to unmask]
> Subject: Re: [PERFIGO] DoS possibilities in the Cisco Clean 
> Access product line
> 
> 
> 
> Folks,
> 
> CCA engineering is investigating this issue. The issues 
> mentioned seem to stem from deprecated jsp pages that are no 
> longer used. We will provide instructions shortly on how this 
> can be mitigated.
> 
> Note that if your CAM is protected by a firewall or by ACLs 
> at your router you are not at risk.
> If your CAM does not have such protection we recommend that 
> you do put such access controls in place.
> 
> If you have any emergency or would like further help in the 
> meantime please contact me directly.
> 
> Regards,
> Atif
> 
> 
> -----Original Message-----
> From: Perfigo SecureSmart and CleanMachines Discussion List 
> [mailto:[log in to unmask]] On Behalf Of Anthony Maszeroski
> Sent: Friday, December 16, 2005 1:01 PM
> To: [log in to unmask]
> Subject: DoS possibilities in the Cisco Clean Access product line
> 
> Link : <http://www.awarenetwork.org/forum/viewtopic.php?p=2236>
> Link : <http://www.securityfocus.com/archive/1/419645>
> 
> --
> - Anthony Maszeroski
> -----------------------------------
> Network Security Specialist
> The University of Scranton
> email : [log in to unmask]
> phone : 570-941-4226
> -----------------------------------
>

ATOM RSS1 RSS2

LISTSERV.MIAMIOH.EDU