Currently viewing the tag: "authentication"

Cisco PPP Authentication

By On March 23, 2010 · 4 Comments

As a network engineer, you most probably already had to do with PPP authentication at least once or two times in your daily operation.  Even more, if you are going for a Cisco certification (and not only) you should know some stuff about PPP authentication. For today, I’ve planned to deal with back-to-back PPP authentication.

For this back to back scenario, we have the following simple topology:

When we talk about PPP authentication on a end-to-end line we are dealing [...]

Continue Reading

SNMP Version 3 Authentication Vulnerabilities

By On February 2, 2010 · 2 Comments

Multiple Cisco products contain either of two authentication vulnerabilities in the Simple Network Management Protocol version 3 (SNMPv3) feature. These vulnerabilities can be exploited when processing a malformed SNMPv3 message. These vulnerabilities could allow the disclosure of network information or may enable an attacker to perform configuration changes to vulnerable devices. The SNMP server is an optional service that is disabled by default in Cisco products. Only SNMPv3 is impacted by these vulnerabilities. Workarounds are available for mitigating the impact of the vulnerabilities described in [...]

Continue Reading

Authentication with a twist

By On March 16, 2009 · Leave a Comment

People mistrust fingerprint devices, mostly because they associate fingerprinting with criminal activity. The average citizen thinks that the fingerprint registration could be stolen and used to implicate them in a crime. It can’t, of course, but that doesn’t change their perception. The same problem faces facial scanning/recognition software which has been used (unsuccessfully) to identify wanted criminals at sporting events. Retina scanners simply scare people – they don’t want anything being shined into their eye. So what can we do?

The smart folks at Fujitsu [...]

Continue Reading

Cisco: Multilink PPP over Frame Relay (MLPoFR)

By On November 19, 2008 · Leave a Comment

In this tutorial I propose to show something that is not very used these days, or at least not every day, but which can be tricky if you don’t know how to approach this type of configuration. To understand this, I assume that you know the basics about PPP, FR and Multilink. I will make a short summary here but I will not go into details:

PPP or Point-to-Point protocol is used to establish direct connection between two network points. It can provide authentication, encryption [...]

Continue Reading

Cisco: Deny false information routing injection into OSPF domain

By On November 17, 2008 · 3 Comments

In a well controlled environment, false information routing should not reach your OSPF domain, as network engineer take care what to advertise and what not into OSPF. But there are cases when you have to deal with 3rd party companies somehow, and you want to be sure that nothing in injected by mistake into your domain. Also this can be a task for CCIE RS lab exam.

And since I specified that this can be an exam task, let take some “DO NOT USE” rule [...]

Continue Reading