Saturday, March 8, 2014

Notes of PONG command on Nexus 7000

Mountain view over Devine Trees near Chilan (棲蘭), Yilan County, Taiwan. (棲蘭神木園)

We can use PONG command to measure and and analyze switch port to other switch port latency. Example of using this command can be found on PONG command reference.

Tuesday, March 4, 2014

My notes about Configuration Register on Cisco Routers

This page on defines all details about "Configuration Register" on Cisco routers.
The Purpose of the Configuration Register
The configuration register can be used to change router behavior in several ways, such as:
  • how the router boots (into ROMmon, NetBoot)
  • options while booting (ignore configuration, disable boot messages)
  • console speed (baud rate for a terminal emulation session)
Configuration registers are indeed DIP switches on most of PC motherboard.

DIP-Switch as part of a PCB from 1976, by Rainglasz.
Captured on Wikipedia.

Wednesday, January 29, 2014

Thursday, January 16, 2014

Fw: NTP Amplification Attacks Using CVE-2013-5211 | US-CERT

Screen capture of this alert page.

If you are running NTP Daemon, remember to upgrade to Version 4.2.7, or just disable “monlist” functionality.

Monday, January 13, 2014

What I have learned from this vulnerability: Undocumented Test Interface in Cisco Small Business Devices

"Two adult Guinea Pigs"
Photo taken by Sandos on Wikipedia.

Recently Eloi Vanderbecken discovered a security hole on his home Internet gateway. An undocumented TCP port 32764 is listened on this gateway. Intruders can use this hole to reset administrator’s password and then gain control of that Internet gateway. There is a post about how Eloi discovered this security hole and possible way for an intruder to gain control.

The brand of that Internet gateway is Linksys, which was once part of Cisco System but now is part of Belkin. That is why I look more carefully about this case. Cisco published this report about the discovered security hole.

I have learned many things about this case.

Popular Posts