RE: OT - Terry Childs, CCIE#14018

My annual security knowledge exam requires that I never divulge my password.
A AAA system should have been implemented so that a centralized process was
in place to begin with. Control of the AAA system and Control of the end
devices should be handled by different parts of the organization. Fire the
AAA guy and the router guy can access via the backdoor passwords, fire the
router guy and the aaa guy can delete his access and create access for the
new router guy. If the new router guy is stupid, then accounting is not his
friend, but the AAA guy can prove who messed up.

David

--
http://dcp.dcptech.com
> -----Original Message-----
> From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
> Travis Niedens
> Sent: Saturday, August 07, 2010 5:28 PM
> To: Sorin Platon ; Sorin Platon
> Cc: Adrian Brayton ; Cisco certification
> Subject: RE: OT - Terry Childs, CCIE#14018
> 
> I know if this was the CISSP he'd lose it. Technically he only withheld
> a
> password and did not change the systems. I am amazed that the IT dept
> did not
> have a set of procedures for device backups and centralized AAA...
> These are
> very simple concepts that can be used for large networks and even are
> part of
> audit requirements. hopefully city governments can learn from this case
> and
> adopt sound technology and personnel policies. If he's insane then
> perhaps
> this approach was the wrong one by all involved. As for your soap
> comment - I
> really do not see how he deserves what you are implying to be the
> outcome. Not
> very mature in my book and it has nothing to do with the case, the
> technologies involved or the purpose of this forum. Next time keep your
> hopes
> of sodomy to yourself. Travis
> 
> 
> -----Original Message-----
> From: Sorin Platon
> Sent: 8/7/2010 7:52:58 PM
> To: Travis Niedens
> Cc: Adrian Brayton , Cisco certification
> Subject: Re: OT - Terry Childs, CCIE#14018
> In my books i hope he's the soap dropper in jail
> 
> If he didn't handle the pwd for 12 days it shows how full of himself
> was
> 
> Let's imagine that he was right, he should've handle the password the
> supervisor will do something stupid on the network he would've been a
> champ.
> 
> The money  sound like a lot but let's imagine 500 devices we all know
> is a 15
> minutes job but the change management the planing all this gets billed
> 
> 
> 
> My guess is that they went after him and really boosted the bills so
> they can
> sue him
> 
> I did worked with the same type of network nazi and he was a CCIE also
> (not as
> bad as Terry but close, very close) everytime that you talked to the
> guy he
> was saying CCIE every second phrase....
> 
> Maybe CISCO could do a dishonorable discharge of his number
> 
> On Sat, Aug 7, 2010 at 3:39 PM, Travis Niedens
> <niedentj_at_hotmail.com<mailto:niedentj_at_hotmail.com>> wrote:
> Perhaps terry was right about the guy's skills if SF had to spend
> 900,000 of
> tax payer money to do a simple thing as password recovery. I am sure
> TAC
> could
> have walked them through it. I am guessing the article is missing a lot
> of
> data.
> 
> 
> -----Original Message-----
> From: Adrian Brayton
> Sent: 8/7/2010 5:58:36 PM
> To: Cisco certification
> Subject: OT - Terry Childs, CCIE#14018
> http://www.businessweek.com/idg/2010-08-07/network-admin-terry-childs-
> gets-4-
> year-sentence.html<http://www.businessweek.com/idg/2010-08-07/network-
> admin-t
> erry-childs-gets-4-%0Ayear-sentence.html>
> 
> 
> Blogs and organic groups at http://www.ccie.net
> 
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
> 
> 
> Blogs and organic groups at http://www.ccie.net
> 
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
> 
> 
> Blogs and organic groups at http://www.ccie.net
> 
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net