[c-nsp] Cisco Security advisory,
am I ok? Authentication Proxy for FTP and Telnet Sessions
Buffer Overflow
Fetzer, Bryan
BFetzer at bresnan.com
Thu Sep 8 12:39:30 EDT 2005
Cisco NSP crew,
(apologies in advance if this has been addressed)
The following was released from Cisco yesterday:
http://www.cisco.com/warp/public/707/cisco-sa-20050907-auth_proxy.shtml
I am debating whether or not any of my routers will be subject to this
affliction.
I do NOT have the auth-proxy command in place for any specific interface
Here's an example of the show command recommended by the aforementioned
security bulletin.
#show ip auth-proxy configuration
Authentication global cache time is 60 minutes
Authentication Proxy Watch-list is disabled
That is the only output, and from what I can tell from the advisory at
first glance it appears I am ok. Obviously the recommended path would be
to upgrade everything ASAP, but I need to know if this should be a
freak-out session or a well thought out upgrading of code gradually.
Bryan Fetzer
Network Engineer
More information about the cisco-nsp
mailing list