Re: Cisco Security Advisory: IOS HTTP authorization vulnerability

From: Eric Vyncke (evynckeat_private)
Date: Mon Jul 02 2001 - 00:56:25 PDT

Next message: Wolfgang Heinemann: "Re: phpMyAdmin 2.1.0 + world readable (apache) log files enable remote user to run"

Previous message: kernel51at_private: "Solaris mailtool exploit"
Next in thread: Carson Gaspar: "Re: Cisco Security Advisory: IOS HTTP authorization vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Tino,

At 13:32 30/06/2001 +0200, Tino Wildenhain wrote:

..%<....%<....

>As we are at it... why dont we just get ssh in IOS to use ssh, scp and 
>friends,
>so we dont have to worry about clear text config files so much?
>All I saw so far was a simple not very well working beta, let allone scp.
>Should it not be a standard feature? And rsh could be dropped.

Hopus Pokus,

12.2(2)T is out now with plain SCP support ;-)
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t2/ftscp.htm

By the way, SSH is in all 12.2 version (if you have the crypto enabled IOS)

-eric


>Just my 0.0001 ;-)
>Regards
>Tino

Next message: Wolfgang Heinemann: "Re: phpMyAdmin 2.1.0 + world readable (apache) log files enable remote user to run"
Previous message: kernel51at_private: "Solaris mailtool exploit"
Next in thread: Carson Gaspar: "Re: Cisco Security Advisory: IOS HTTP authorization vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Jul 02 2001 - 12:06:16 PDT