[c-nsp] Loss of Telnet Capability to 6509
Richard J. Sears
rsears at adnc.com
Wed Jul 28 15:50:33 EDT 2004
Very strange indeed...
On Wed, 28 Jul 2004 12:28:13 -0700
"Raymond, Steven" <steven_raymond at eli.net> wrote:
> > -----Original Message-----
> > From: Richard J. Sears [mailto:rsears at adnc.com]
> > Sent: Wednesday, July 28, 2004 11:13 AM
> > To: Voll, Scott
> > Cc: cisco-nsp at puck.nether.net
> > Subject: Re: [c-nsp] Loss of Telnet Capability to 6509
> >
> >
> > That is the interesting part. A Who shows a single connection on vty 2
> > (a sh line vty 2 seems to agree) but a clear line vty 2 (with
> > a confirm)
> > fails to reset the line. The connection still shows active,
> > however idle
> > for about 6 hours.
> >
> >
> > No other connections show open.
>
> Same symptoms here on a 5500 RSM. Shows someone logged into vty 0 idle 7.5
> hours, despite the exec-timeout being far less than that.
>
> Can't get rid of the phantom session on vty 0.
>
> Can't telnet to the RSM from network nor session in from the Sup.
>
> Smells like a new exploit/DOS?
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
******************************************
Richard J. Sears
Vice President
American Digital Network
----------------------------------------------------
rsears at adnc.com
http://www.adnc.com
----------------------------------------------------
858.576.4272 - Phone
858.427.2401 - Fax
INOC-DBA - 6130
----------------------------------------------------
I fly because it releases my mind
from the tyranny of petty things . .
"Work like you don't need the money, love like you've
never been hurt and dance like you do when nobody's
watching."
More information about the cisco-nsp
mailing list