Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
569
Views
0
Helpful
0
Replies

Cisco Configuration Security

MNMN19016
Level 1
Level 1

‎07-24-2019 03:49 PM - last edited on ‎10-16-2019 01:47 PM by Community Manager

Hello there,

I'm working in a company has more than 700 Cisco device, in 700 branch

The IT Department concept of security is a little low, the just made "secret for enable" and even not activated " No service password-recovery", VPN enabled, I think it's IPSEC- Preshared Key to access internal networks, via multiple VLANs.

Any way,

I want to note that I'm not expert in networking, just amateur, and I'm not native English, I'm just Pen-tester Try to demonstrate and vulnerability and Proof of concept on it, that been said,

1- When anyone password-recovery procedure, he just need to no shut the interface and everything will work again, no hidden tricks????

summary : >> confreg 0x2142 -- Then copy start run , int f 0/0 , no shut, wr, copy run start

2- Let's assume that we have copied the configuration out to TFTP server, can we configure that "config" to GNS3 Router and connect it to Cloud internet

does that Scenario can give the person access to our network ?? or it's away away from real life ?

 

Regards,,

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents