From: John Wayne (john.wayne.ccie@gmail.com)
Date: Mon Jul 21 2008 - 17:58:18 ART
"At one point he was concerned about the security of the FiberWAN routers in
remote offices, so he had them set up without saving the config to flash.
"If they go down, I'll get alerted, and connect up to them and reload the
config." Great, except we have power outages all the time in this city, some
of those devices aren't on UPSs, and what happens if you're on vacation? And
what about the 15 to 60 minutes it might take you to connect up and reload?
He eventually conceded and (ahem) decided that disabling password recovery
was sufficient security."
No,
What he did was build an exit plan in the event they did do what they did.
Not uncommon or un heard of.
Anyone who reads this can figure out the rest.
Personally it means more Network Administrators are needed by these people.
However, who would want to work for a network that arrested the last network
engineer? And for what a city government might pay in California?
On Mon, Jul 21, 2008 at 4:40 PM, Brian McGahan <
bmcgahan@internetworkexpert.com> wrote:
> "The routing configuration of the FiberWAN is extremely complex.
> Probably more so than it ought to be; I sometimes got the feeling that,
> in order to maintain more centralized control over the routing
> structure, [Childs] bent some of the rules of MPLS networks and caused
> problems for himself in terms of maintaining the routing."
>
> Did he do the hail-mary of CCIE networking and redistribute connected
> everywhere?
>
> ;)
>
> Brian McGahan, CCIE #8593 (R&S/SP/Security)
> bmcgahan@internetworkexpert.com <mailto:bmcgahan@internetworkexpert.com>
>
> Internetwork Expert, Inc.
> http://www.InternetworkExpert.com <http://www.internetworkexpert.com/>
> Toll Free: 877-224-8987 x 705
> Outside US: 775-826-4344 x 705
> Online Community: http://www.IEOC.com <http://www.ieoc.com/>
> CCIE Blog: http://blog.internetworkexpert.com
>
>
> darth router wrote:
> > Yea that article was nuts. The original article really played him out to
> be
> > this horrible hacker sysadmin type, but it turns out they were full of
> shit.
> > He's just he CCIE who didn't want morons screwing up his network.
> >
> > DR
> >
> > On Mon, Jul 21, 2008 at 11:07 AM, Andrew Shin <mr.dude@gmail.com> wrote:
> >
> >
> >> I couldn't imagine this happening in a large network, but here it is:
> >>
> >>
> >>
> http://www.pcworld.com/businesscenter/article/148669-2/the_story_behind_san_franciscos_rogue_network_admin.html
> >>
> >>
> >> _______________________________________________________________________
> >> Subscription information may be found at:
> >> http://www.groupstudy.com/list/CCIELab.html
> >>
> >
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Mon Aug 04 2008 - 06:11:56 ART