18 Jan
2007
18 Jan
'07
5:51 p.m.
On Thu, 2007-01-18 at 14:33 -0700, Berkman, Scott wrote:
There is this Network Management theory called Out of Band Management.
Which is rarely properly applied. I lost count of the data centers that block mgmt traffic from external customers, but leave internal systems (which are often "sublet" to all sorts of external customers) wide open to mgmt servers/devices. Unfortunately mgmt systems need access to whatever they are monitoring, so if you're monitoring customer systems then you are more than likely exposed and should take high-priority at tightening your NMS systems. I know, I work for a NMS vendor and I wouldn't sign my name certifying that our stuff is secure. It's funny how pen testing seems to avoid NMS stuff. -Jim P.