What Are You Doing Right Now
-
I think the OP of https://community.spiceworks.com/topic/1997727-outside-auditor-is-requesting-firewall-configuration-files-is-this-safe
Would be right to bring his concerns to management. However, I also do not see an issue with sending the file as-is -- if management approves and understands that if passwords are in that file, they can ultimately be recovered by various means. I'd get that in writing from everybody as high up in the chain it needs to go before sending that file out.
Of course, my recommendation would be to redact the passwords, and in the config file, they would clearly be labelled *REDACTED* . If I can redact the passwords, I'd see no problems with sending out the config files to a third party.
Either way, the auditors would get what they need.
-
@Dashrender said in What Are You Doing Right Now:
in your case I would want an audit on day one. Someone else to show the bosses the state of the system before you took over. then audited again later to show how things have improved.
I agree, that's great to do.
-
@dafyre said in What Are You Doing Right Now:
Would be right to bring his concerns to management. However, I also do not see an issue with sending the file as-is -- if management approves and understands that if passwords are in that file, they can ultimately be recovered by various means. I'd get that in writing from everybody as high up in the chain it needs to go before sending that file out.
You think his network config file has passwords in it? If so, hiding that woudl be a BIG deal. How do passwords even get ni there?
-
@scottalanmiller said in What Are You Doing Right Now:
@dafyre said in What Are You Doing Right Now:
Would be right to bring his concerns to management. However, I also do not see an issue with sending the file as-is -- if management approves and understands that if passwords are in that file, they can ultimately be recovered by various means. I'd get that in writing from everybody as high up in the chain it needs to go before sending that file out.
You think his network config file has passwords in it? If so, hiding that woudl be a BIG deal. How do passwords even get ni there?
It's been a while since I've looked, but the last Cisco router I worked on had them encrypted. My HP Networking gear (much more recently) had them encrypted. My Fortigate 110C and 500D also had passwords encrypted in the config file. So yes, I consider that a strong possibility.
-
@dafyre said in What Are You Doing Right Now:
@scottalanmiller said in What Are You Doing Right Now:
@dafyre said in What Are You Doing Right Now:
Would be right to bring his concerns to management. However, I also do not see an issue with sending the file as-is -- if management approves and understands that if passwords are in that file, they can ultimately be recovered by various means. I'd get that in writing from everybody as high up in the chain it needs to go before sending that file out.
You think his network config file has passwords in it? If so, hiding that woudl be a BIG deal. How do passwords even get ni there?
It's been a while since I've looked, but the last Cisco router I worked on had them encrypted. My HP Networking gear (much more recently) had them encrypted. So yes, the last time I worked on devices and checked, my config files did have the password in the configuration files, encrypted, fortunately.
Wow, so glad I'm on Ubiquiti When I output the config, definitely nothing to redact.
-
@scottalanmiller said in What Are You Doing Right Now:
@dafyre said in What Are You Doing Right Now:
@scottalanmiller said in What Are You Doing Right Now:
@dafyre said in What Are You Doing Right Now:
Would be right to bring his concerns to management. However, I also do not see an issue with sending the file as-is -- if management approves and understands that if passwords are in that file, they can ultimately be recovered by various means. I'd get that in writing from everybody as high up in the chain it needs to go before sending that file out.
You think his network config file has passwords in it? If so, hiding that woudl be a BIG deal. How do passwords even get ni there?
It's been a while since I've looked, but the last Cisco router I worked on had them encrypted. My HP Networking gear (much more recently) had them encrypted. So yes, the last time I worked on devices and checked, my config files did have the password in the configuration files, encrypted, fortunately.
Wow, so glad I'm on Ubiquiti When I output the config, definitely nothing to redact.
All the more reason to switch, ha ha.
-
@dafyre said in What Are You Doing Right Now:
@scottalanmiller said in What Are You Doing Right Now:
@dafyre said in What Are You Doing Right Now:
@scottalanmiller said in What Are You Doing Right Now:
@dafyre said in What Are You Doing Right Now:
Would be right to bring his concerns to management. However, I also do not see an issue with sending the file as-is -- if management approves and understands that if passwords are in that file, they can ultimately be recovered by various means. I'd get that in writing from everybody as high up in the chain it needs to go before sending that file out.
You think his network config file has passwords in it? If so, hiding that woudl be a BIG deal. How do passwords even get ni there?
It's been a while since I've looked, but the last Cisco router I worked on had them encrypted. My HP Networking gear (much more recently) had them encrypted. So yes, the last time I worked on devices and checked, my config files did have the password in the configuration files, encrypted, fortunately.
Wow, so glad I'm on Ubiquiti When I output the config, definitely nothing to redact.
All the more reason to switch, ha ha.
To "switch". I see what you did there.
-
I'm raging at Bodum. How do you take a perfectly good 1 liter beaker with a plunger and screw it up? Add useless plastic! WTF!?! GARBAGE!
-
@MattSpeller Just use a Chemex
-
*sips coffee from under the table*
-
Restoring Domain Controller from backup (testing) take 2.
-
@MattSpeller said in What Are You Doing Right Now:
I'm raging at Bodum. How do you take a perfectly good 1 liter beaker with a plunger and screw it up? Add useless plastic! WTF!?! GARBAGE!
You don't like the taste of plastic?
-
@fuznutz04 said in What Are You Doing Right Now:
@MattSpeller said in What Are You Doing Right Now:
I'm raging at Bodum. How do you take a perfectly good 1 liter beaker with a plunger and screw it up? Add useless plastic! WTF!?! GARBAGE!
You don't like the taste of plastic?
Plastic is fine but they made it so that the handle at the top requires a cut out which means you put the plunger in at an angle and then spill grounds down the front of it into the bottom plastic bit which means you have to clean the frigging thing every time you use it. RAWR
-
@MattSpeller wait why do you need to put the plunger in at an angle. . . .
-
@DustinB3403 said in What Are You Doing Right Now:
@MattSpeller wait why do you need to put the plunger in at an angle. . . .
Bad design. I believe he said that.
-
@DustinB3403 said in What Are You Doing Right Now:
@MattSpeller wait why do you need to put the plunger in at an angle. . . .
There's a tab that sticks out where the handle attaches at the top
-
@JaredBusch Yeah no I got that, but I'm not seeing it with how the picture above shows.
Maybe I'm just misunderstanding what he's trying to say.
-
@DustinB3403 said in What Are You Doing Right Now:
@MattSpeller wait why do you need to put the plunger in at an angle. . . .
Because that's how she likes it!!!
-
@MattSpeller said in What Are You Doing Right Now:
@DustinB3403 said in What Are You Doing Right Now:
@MattSpeller wait why do you need to put the plunger in at an angle. . . .
There's a tab that sticks out where the handle attaches at the top
Still not understanding why that causes you to have to clean the unit every time. .
-
@DustinB3403 said in What Are You Doing Right Now:
@MattSpeller said in What Are You Doing Right Now:
@DustinB3403 said in What Are You Doing Right Now:
@MattSpeller wait why do you need to put the plunger in at an angle. . . .
There's a tab that sticks out where the handle attaches at the top
Still not understanding why that causes you to have to clean the unit every time. .
Grounds in bottom, fill with boiling water, grounds expand with CO2 (because fresh!), typically you can just put it in straight down and it plunges all the delicious foamy head no worries. With this system it goes in at an angle and all your tasty foamy head + a shitload of grounds goes SQUISH out the spout.