Cisco Ethernet switch Instrukcja Użytkownika Pobierz pdf (Strona 68)

686868

l2-security-bh.ppt

CDP Attacks

¥ Besides the information gathering benefit CDP offers an

attacker, there was a vulnerability in CDP that allowed

Cisco devices to run out of memory and potentially crash

if you sent it tons of bogus CDP packets

¥ If you need to run CDP, be sure to use IOS code with

minimum version numbers: 12.2(3.6)B, 12.2(4.1)S,

12.2(3.6)PB, 12.2(3.6)T, 12.1(10.1), 12.2(3.6) or CatOS code

6.3, 5.5, or 7.1 and later

¥ Problem was due to improper memory allocation for the

CDP process (basically there was no upper limit)

¥ Discovered by FX @ Phenolit

¥ For more information:

http://www.cisco.com/warp/public/707/cdp_issue.shtml

http://www.kb.cert.org/vuls/id/139491

1 2 ... 63 64 65 66 67 68 69 70 71 72 73 ... 83 84

Hacking Layer 2: Fun with 1
Ethernet Switches 1
¥ Layer 2 Attack Landscape 2
¥ Summary and Case Study 2
The Domino Effect 5
The Numbers from CSI/FBI 7
MAC Attacks 8
MAC Address/CAM Table Review 9
Normal CAM Behaviour 1/3 10
Normal CAM Behaviour 2/3 11
Normal CAM Behaviour 3/3 12
CAM Overflow 1/3 13
CAM Overflow 2/3 14
CAM Overflow 3/3 15
Catalyst CAM Tables 16
CAM Table Full! 18
¥ Port Security 19
Port Security Details 20
VLAN ÒHoppingÓ Attacks 21
Trunk Port Refresher 22
0100.0ccc.cccc 24
Dynamic Trunk Protocol (DTP) 25
Basic VLAN Hopping Attack 26
Hopping Attack 27
Outer Tag, Attacker VLAN 28
Inner Tag, Victim VLAN 28
Disabling Auto-Trunking 29
Security Best Practices 30
ARP Attacks 31
ARP Refresher 32
Gratuitous ARP 33
Misuse of Gratuitous ARP 34
A Test in the Lab 35
¥ ARP spoofing 36
¥ MAC flooding 36
¥ Selective sniffing 36
¥ SSH/SSL interception 36
Arpspoof in Action 37
More on Arpspoof 38
Selective Sniffing 39
SSL/SSH Interception 40
Dsniff evolves: Ettercap 43
Can It Get Much Easier? 44
ARP Entries do not age out 46
Community Ports 46
Private VLAN Configuration 47
More ARP Spoof Mitigation 49
Spanning Tree Attacks 50
Spanning Tree Basics 51
STP Attack Mitigation 56
VLAN Trunking Protocol (VTP) 57
Potential VTP Attacks 58
Layer 2 Port Authentication 59
Dynamic VLAN Access Ports 60
VMPS Architecture 61
VMPS/VQP Attacks 62
VMPS/VQP Attack Mitigation 63
(TLS, MD5, OTP) 64
802.1X Port Authentication 65
Other Attacks 66
0100.0ccc.cccc 67
CDP Attacks 68
DHCP Starvation Attacks 69
Private VLAN Attacks 1/2 71
Private VLAN Attacks 2/2 72
PVLAN Attack Mitigation 73
Nice Try 74
Random Frame Stress Attack 75
IP Telephony Considerations 76
Switch Management 77
Summary and Case Study 78
Your Own Security Policy 80
A Relevant Case Study 81
A More Secure Alternative 82
Lessons Learned 83
Further Reading 84

Komentarze do niniejszej Instrukcji

Brak uwag

Cisco Ethernet switch Instrukcja Użytkownika Strona 68

Komentarze do niniejszej Instrukcji

Powiązane produkty i podręczniki dla Networking Cisco Ethernet switch