Security Basics mailing list archives
RE: Unauthorised switchport access
From: "Scott Ramsdell" <Scott.Ramsdell () cellnet com>
Date: Tue, 14 Nov 2006 14:25:49 -0500
Gary, One very simple "pentest", actually recon, would be to patch in and run ShareEnum from Sysinternals/Microsoft. This will reveal all of the shares on the network that are configured for default access, Everyone Full control. You are of course also open to all of the attacks available once IP connectivity is established. Physical access to a switch will allow you to reset the enable password too. Kind Regards, Scott Ramsdell -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of gary.shaw () dfpni gov uk Sent: Tuesday, November 14, 2006 3:36 AM To: security-basics () securityfocus com Subject: Unauthorised switchport access Guys I am responsible for several LANs that include sharing WCs with other organisations, and therefore access to my 3750 switches in unlocked cabinets. I have no port security enabled and the ports are not shut down. I would like to know the security implications of having unused switchports available to anyone eg with a laptop & DHCP configured? Are there any simple pentests i could complete myself? Is my organisation's network a sitting duck?? Thanks in advance! ------------------------------------------------------------------------ --- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Unauthorised switchport access gary . shaw (Nov 14)
- Re: Unauthorised switchport access Aaron Howell (Nov 15)
- Re: Unauthorised switchport access Kern (Nov 15)
- RE: Unauthorised switchport access David Gillett (Nov 15)
- Re: Unauthorised switchport access MaddHatter (Nov 15)
- RE: Unauthorised switchport access Murda Mcloud (Nov 15)
- <Possible follow-ups>
- RE: Unauthorised switchport access Scott Ramsdell (Nov 15)
- RE: Unauthorised switchport access Erick Jensen (Nov 15)
- RE: Unauthorised switchport access dholton1 (Nov 16)