Hosting Provided By

Re: Trojan attacking our switches

From: Mike Hoskins <mike(at)adept.org>
Date: Fri Mar 21 2003 - 15:21:59 EST

On Thu, 20 Mar 2003, Charles Polisher wrote:
> Search of CVE and securityfocus and googling

wrt SNMP vulnerabilities (seems relevant):

http://www.cert.org/advisories/CA-2002-03.html

> Telnetting into our HP Procurve 2524 switch

SNMP should be setn to a VLAN/management interface. Can you ACL the interface to only allow SNMP from trusted hosts? Also, I assume you only allow telnet from your management network.

-mrh

<Pre>Lose another weekend managing your IDS? Take back your personal time.
15-day free trial of StillSecure Border Guard.</Pre> <A href="http://www.securityfocus.com/stillsecure"> http://www.securityfocus.com/stillsecure </A> Received on Fri Mar 21 16:14:26 2003

This message: [ Message body ]
Next message: Steve Zenone: "California State Bill SB1386"
In reply to: Charles Polisher: "Trojan attacking our switches"
In reply to dreamwvr(at)dreamwvr.com: "Re: Trojan attacking our switches"
Next in thread: Kris Saw: "Re: Trojan attacking our switches"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:00 EDT

Do you need help?