Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Someone tried to hack my ftp lastnight.
New Posts  All Forums:Forum Nav:

Someone tried to hack my ftp lastnight. - Page 5

post #41 of 62
Quote:
Originally Posted by scottsee View Post
Fixed..

Educated is not the same as untouchable.


Now you're trolling.
The 3930
(26 items)
 
Junior's 3930
(22 items)
 
DATA/HTPC
(20 items)
 
  hide details  
Reply
The 3930
(26 items)
 
Junior's 3930
(22 items)
 
DATA/HTPC
(20 items)
 
  hide details  
Reply
post #42 of 62
I'll read your links because I'm interested in what you're trying to get across.. But what you're saying "Networks secured by Cisco enterprise devices are easier to hack then $100 Wallmart devices" is just ludicrous. And not the funny looking black guy!
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
post #43 of 62
Quote:
Originally Posted by tsm106 View Post


Now you're trolling.
Leave it alone.. Opinions are not trolling..
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
post #44 of 62
Thread Starter 
Wow, this thread took off. I intend to report back and discuss a few things once I'm done with work in a few hours. Thanks for any tips thus far and lets keep it civil guys.
Daily Desktop
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X2 555 Black @ 4.0 MSI 870A-G54 Radeon HD 5850 8 Gigs DDR3 1600 
OSMonitorKeyboardPower
Windows 7 Pro x64 22" Primary, 19" Secondary Razor Reclusa (Temp) Cheap 650 that I'm embarrassed of. 
CaseMouse
CM HAF 932 Black G5 
  hide details  
Reply
Daily Desktop
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X2 555 Black @ 4.0 MSI 870A-G54 Radeon HD 5850 8 Gigs DDR3 1600 
OSMonitorKeyboardPower
Windows 7 Pro x64 22" Primary, 19" Secondary Razor Reclusa (Temp) Cheap 650 that I'm embarrassed of. 
CaseMouse
CM HAF 932 Black G5 
  hide details  
Reply
post #45 of 62
Quote:
Originally Posted by JedixJarf View Post

Edit: And no, Im not "trolling you". Just putting up the facts. It's unfortunate that everyone has preconceived notions that just because you have a pix or an asa means your unhackable or think that just because it says Cisco or Juniper on the from that it means it will be 10x more secure than a linksys or dlink router.
Question: Have you ever configured Class-map protocol inspection policies or inline IPS inspection rules? I'm not trying to compare experiences here, I'm just curious if this notion you have is based on empirical evidence you've ascertained from direct interaction or from Internet readings, and word of mouth..
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
post #46 of 62
Fight nice, girls.
Intellect v2
(9 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7-6700K Processor ASUS ROG MAXIMUS VIII HERO LGA1151 DDR4 M.2 SAT... EVGA GTX 1080 SC ACX 3.0 Crucial Ballistix Sport 32GB DDR4 2400 MT/s (PC... 
CoolingKeyboardPowerCase
Noctua NH-D15 Das Keyboard 4 Professional (Brown) Corsair AX860 Fractal Design Define R5 
Mouse
MIONIX NAOS 7000 
  hide details  
Reply
Intellect v2
(9 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7-6700K Processor ASUS ROG MAXIMUS VIII HERO LGA1151 DDR4 M.2 SAT... EVGA GTX 1080 SC ACX 3.0 Crucial Ballistix Sport 32GB DDR4 2400 MT/s (PC... 
CoolingKeyboardPowerCase
Noctua NH-D15 Das Keyboard 4 Professional (Brown) Corsair AX860 Fractal Design Define R5 
Mouse
MIONIX NAOS 7000 
  hide details  
Reply
post #47 of 62
Quote:
Originally Posted by scottsee View Post
Question: Have you ever configured Class-map protocol inspection policies or inline IPS inspection rules? I'm not trying to compare experiences here, I'm just curious if this notion you have is based on empirical evidence you've ascertained from direct interaction or from Internet readings, and word of mouth..
Yes I have, im not ignorant and I would never try to discuss a point that I would have no knowledge or understanding on. And those links were just to prove a point that Im not the only one with this mind set. Just google pen test ios or pen test cisco or cisco ios zero day and you will find plenty of ways to hack into your cisco gear, if anything it will help you be more secure in the networks you setup.

I really do not want to have an uncivilized argument or turn this into anything that it shouldn't be. Because If it does, then this will happen.
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
post #48 of 62
Quote:
Originally Posted by JedixJarf View Post
Im not sure what you mean by theory, as it isn't really a theory its more factual than anything. I can only lead the horse to the water, cant make him drink it.

http://www.symantec.com/connect/arti...routers-part-1

http://www.net-security.org/article.php?id=1548

http://www.metasploit.com/modules/

http://www.ethicalhacker.net/content/view/357/1/

Edit: And no, Im not "trolling you". Just putting up the facts. It's unfortunate that everyone has preconceived notions that just because you have a pix or an asa means your unhackable or think that just because it says Cisco or Juniper on the from that it means it will be 10x more secure than a linksys or dlink router.
I just went though your links, and those are all junk attacks. WAYY OLD 12.0 - 12.2 based. The current IOS is in the 15.x, some of those are even on the 3500XL. Like the HTTP authentication level 15 bypass to grab the running-config. The SSH banner grabbing, to enumerate a device as a being Cisco, that's comical. Then there is the metaspolit database link that you provided, after searching though their developed exploits the best one I found was the a Rapid Spanning-Tree (RSVP) to authenticate as the root bridge by sending bogus Root Bridge ID's and forcing the Spanning-Tree domain to re-run the STA.. Which is probably the silliest example as an exploit I've heard of that can be defeated by implementing basic switch port security with proper implementation of hard coding access ports and turning on Portfast & BPDU guard.


Provide me one exploit for a 12.4 + IOS and I'll continue our debate.
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Cisco Cisco Cisco Cisco 
  hide details  
Reply
post #49 of 62
Quote:
Originally Posted by scottsee View Post
I just went though your links, and those are all junk attacks. WAYY OLD 12.0 - 12.2 based. The current IOS is in the 15.x, some of those are even on the 3500XL. Like the HTTP authentication level 15 bypass to grab the running-config. The SSH banner grabbing, to enumerate a device as a being Cisco, that's comical. Then there is the metaspolit database link that you provided, after searching though their developed exploits the best one I found was the a Rapid Spanning-Tree (RSVP) to authenticate as the root bridge by sending bogus Root Bridge ID's and forcing the Spanning-Tree domain to re-run the STA.. Which is probably the silliest example as an exploit I've heard of that can be defeated by implementing basic switch port security with proper implementation of hard coding access ports and turning on Portfast & BPDU guard.


Provide me one exploit for a 12.4 + IOS and I'll continue our debate.
http://www.securityfocus.com/bid/25238/info

2 second google search
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
post #50 of 62
That's still a 4 year old vulnerability which was quickly patched..
Not anything vaguely recent, there are no devices not in EOL that will be running these IOS versions.
Waiting on X399
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II B57 @ X4 3.9 Gigabyte 790FXTA-UD5 Sapphire Radeon 290 8 GB G.Skill 2133 
Hard DriveCoolingOSKeyboard
250 GB 840 EVO Noctua NH-D14 Windows 10 Logitech K350 
PowerCaseMouseMouse Pad
Seasonic x750 Corsair 600T Logitech G100s Razer Goliathus Speed 
Audio
Plantronics Gamecom 788 
  hide details  
Reply
Waiting on X399
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II B57 @ X4 3.9 Gigabyte 790FXTA-UD5 Sapphire Radeon 290 8 GB G.Skill 2133 
Hard DriveCoolingOSKeyboard
250 GB 840 EVO Noctua NH-D14 Windows 10 Logitech K350 
PowerCaseMouseMouse Pad
Seasonic x750 Corsair 600T Logitech G100s Razer Goliathus Speed 
Audio
Plantronics Gamecom 788 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Someone tried to hack my ftp lastnight.