Tag: Security - NetCraftsmen, a BlueAlly Company

Simplicity and Segmentation

This blog discusses simplicity of network design, Segmentation and Security. It continues the series started in Designing a Medical Grade Network Using BGP with VRF-Lite for Shared Service Support CE Design [...]

Dropbox Security: Good Enough?

I don’t intend to argue the merits of the suit, except to say that I’m skeptical that people really know what they mean when they say “best practice.” (I’ve written [...]

Audit Logs on CUCM Part 2

In April I wrote a blog: Audit Logs on Cisco Unified Communications Manager. This blog focused on new audit features available with Cisco Unified Communications Manager (CUCM) 7.1(2) and later. Recent Netpro discussions around a similar topic provided a reminder that there were other aspects of the CUCM system that…

Audit Logs on Cisco Unified Communications Manager (CUCM)

Ever since I started working with Cisco Call Manager (circa 1999 - yikes) I have always wanted a way to implement an Authentication/Authorization/Accounting model. Now, I finally got everything I wanted. The Authentication/Authorization need was addressed somewhere around CM 3.1.4b with a web application add-on called Multi-Level Access (MLA). Since…

Hackers Don’t Care About My Small Business. Or Do They?

For those of you that think professional hackers don't care about your small business, let me introduce you to Zeus, the number one threat of 2009. According to SC Magazine: "Zeus: Also known as Ztob, this bank credential-stealing trojan is masterfully built. It is designed to evade anti-virus detection and…

New Cisco Security Podcasts Available

The Cisco Security team had started a podcast series through iTunes in 2008. They had 7 podcasts and then it died out. The podcasts are still available, on iTunes. Just search on Cisco and you'll see the Cisco security podcasts as well as other Cisco podcasts. It looks like they…

Which Windows SFTP Server Should I Use For My Cisco UC Appliance? How about copSSH?

If you have recently migrated to a Cisco UC appliance model or plan on migrating, you may have asked yourself this question. Cisco provides some recommendations in their various installation guides. I happen to like copSSH myself and I thought I would provide some information on the application and how…

Adding Unity SAWeb Administrative Accounts using GrantUnityAccess and COS

Most people don't bother with modifying the Unity SAWeb administrative account (unityadmin). They are content with just letting everyone log on using the unityadmin (or unityinstall) account. The NetCraftsmen UC team prefers to avoid this method as it violates some best practices on security. Specifically, accountability.

Terry Slattery

The Case of the Failed PCI Audit

“Holy Crap!” exclaimed David from the depths of the cube farm, “We just failed the PCI audit! Check out the email from Tony.” Tony is the CIO. David is one [...]

Terry Slattery

Anti-spoofing filters

I’ve been doing more consulting work and am surprised by the number of organizations that don’t use anti-spoofing filters within their networks. An anti-spoofing filter is placed on the input [...]

Terry Slattery

Wireless Security

I was just reading about a neat free wireless vulnerability scanner written by Josh Wright, Wireless security foiled by new exploits. If you’re concerned about your wireless network security, it [...]

Terry Slattery

IPv6 Security

One of the security factors I’ve heard espoused about IPv6 is that the large address space (128 bits: 64 bits of network and 64 bits of host address) makes it [...]