Security

CSC Sizing Guide

If your in the market for an ASA with the Content Security and Control module and you are wondering how to appropriately size the ASA and CSC for your environment. There is a guide available on CCO which can help, this guide is intended to assist customers with sizing deployments of the ASA 5500 Series [...]

3Jul2008 | Joe Harris | 0 comments | Continued

Put a lock on your best ideas

Use these insider tricks to protect your business—and your ideas. J. Nevin Shaffer, attorney and author, reveals how to secure trade secrets, get nondisclosure agreements and more.

Put a lock on your best ideas: Download

30Jun2008 | Joe Harris | 0 comments | Continued

Security 101: Layer 1 Is the Loneliest Number

Get a grip on your business’s security in this eight-part series. Learn how to handle the complexities of keeping your network secure, layer by layer, in this article from bMighty.
Security 101

30Jun2008 | Joe Harris | 0 comments | Continued

Announcing availability of E2 Engine Update and 6.0(5) and 5.1(8) Service Packs for Cisco IPS

Cisco is pleased to announce availability of the second Engine Update (E2) as well as the latest service packs for IPS 6.0 and 5.1 versioned sensors.
IMPORTANT NOTE: Beginning with S339, the E2 engine update MUST be installed prior to installing new signature updates.
The E2 update enhances the detection capabilities of Cisco IPS platforms with [...]

24Jun2008 | Joe Harris | 0 comments | Continued

Cisco IPS Active Update Bulletin

The Cisco IPS Active Update Bulletin has been posted for June 20th. Topics listed in this current bulletin are as follows:

Announcing Availability of the E2 Engine Update (with S339) and 6.0(5) and 5.1(8) Service Packs
Announcing the S340 Signature Update for IPS
Upcoming End-of-Life (EOL) for new signature updates in 4.x format for Cisco IOS IPS feature
Subscribe [...]

24Jun2008 | Joe Harris | 0 comments | Continued

Setting up AAA on the ASA using the Local Database

This document provides step-by-step instructions on setting up users via the ASA local database for Authentication and Authorization of ASDM, Console access and SSH. The focus is on Authorization and how to provide limited command access to a user. Although most organizations provide the same functionality via RADIUS or TACACS+ this document aims to provide [...]

24Jun2008 | Joe Harris | 2 comments | Continued

CiscoPress SSL Remote Access VPN book is now available

I are very happy to share with you the news that the Cisco press book titled SSL Remote Access VPNs is out and will be available at the upcoming Networkers event next week.
The book (which was written by Jazib Frahim, CCIE #5459 & Qiang Huang, CCIE #4937) covers the design, configuration and management aspects of deploying [...]

19Jun2008 | Joe Harris | 0 comments | Continued

ASA Compatible with EIGRP Version 3

Many of you may be aware that EIGRP support for the ASA was added in 8.0(2). In fact there is a very nice, easy to follow tech note detailing how to enable EIGRP on your ASA listed here: EIGRP Tech Note. However, if you upgrade from 8.0(2) to 8.0(3) due to a packet format change, [...]

18Jun2008 | Joe Harris | 0 comments | Continued

Free 6-Month Security Intelligence Trial

Cisco Security IntelliShield Alert Manager Service provides a comprehensive, cost-effective solution for delivering the vendor-neutral security intelligence organizations need to identify, prevent, and mitigate IT attacks. This customizable, Web-based threat and vulnerability alert service allows security staff to access timely, accurate, and credible information about threats and vulnerabilities that may affect their environments. IntelliShield Alert [...]

12Jun2008 | Joe Harris | 0 comments | Continued

IntelliShield Cyber Risk Report

The IntelliShield Cyber Risk Report is a strategic intelligence product that highlights current security activity and mid- to long-range perspectives. The report addresses seven major risk management categories: vulnerability, physical, legal, trust, identity, human, and geopolitical. The Cyber Risk Reports are a result of collaborative efforts, information sharing, and collective security expertise of senior analysts [...]

Standard Podcast: Play Now | Play in Popup | Download

12Jun2008 | Joe Harris | 0 comments | Continued

Cisco Security Advisory: SNMP Version 3 Authentication Vulnerabilities

Please reference the lower right-hand side of my page titled “PSIRT RSS FEED” for complete details pertaining to this issue
Multiple Cisco products contain either of two authentication vulnerabilities in the Simple Network Management Protocol version 3 (SNMPv3) feature. These vulnerabilities can be exploited when processing a malformed SNMPv3 message. These vulnerabilities could allow the disclosure of [...]

10Jun2008 | Joe Harris | 0 comments | Continued

IntelliShield Event Response: Microsoft Security Bulletin for June 2008

Microsoft released the June Security Update on June 10, 2008. Seven bulletins were released that address ten individual vulnerabilities. Microsoft rated three of the seven bulletins as Critical. Some level of user interaction is required to exploit the Critical vulnerabilities that exist in Microsoft Internet Explorer and Microsoft DirectX. The Critical vulnerability in the Microsoft [...]

10Jun2008 | Joe Harris | 0 comments | Continued

IntelliShield Cyber Risk Report

Standard Podcast: Play Now | Play in Popup | Download

5Jun2008 | Joe Harris | 0 comments | Continued

IntelliShield Cyber Risk Report

Standard Podcast: Play Now | Play in Popup | Download

5Jun2008 | Joe Harris | 0 comments | Continued

Cisco IPS Active Update Bulletin

The Cisco IPS Active Update Bulletin has been posted for March 11th. Topics listed in this current bulletin are as follows:

Announcing the S335 Signature Update for IPS
Announcing Availability of Cisco IPS Manager Express (IME) and IPS Version 6.1
Upcoming E2 Engine Update
Upcoming End-of-Life (EOL) for new signature updates in 4.x format for Cisco IOS IPS feature
Announcing [...]

29May2008 | Joe Harris | 0 comments | Continued

Cisco Security Advisory: CiscoWorks Common Services Arbitrary Code Execution Vulnerability

CiscoWorks Common Services contains a vulnerability that could allow a remote attacker to execute arbitrary code. Cisco has released free software updates that address this vulnerability. CiscoWorks Common Services represents a common set of management services that are shared by CiscoWorks applications. CiscoWorks is a family of products based on Internet standards for managing networks [...]

29May2008 | Joe Harris | 0 comments | Continued

IntelliShield Event Response: Microsoft Security Bulletin for May 2008

Microsoft released the May Security Update on May 13, 2008. Four bulletins were released that address six individual vulnerabilities. Microsoft rated all four bulletins as Critical. The vulnerabilities that have a client software attack vector, require user interaction, or can be exploited through web-based attacks such as cross-site scripting or phishing are in the following list:

MS08-026
MS08-027
MS08-028
MS08-029

Information [...]

27May2008 | Joe Harris | 0 comments | Continued

ASA Jumpstart Training

Instructions to access training content and recorded sessions:

Go to https://ciscosales.webex.com/meet/Martinez

Select the ‘Files’ tab .

Click on the ‘+’ sign to open the list of files - Power of Pix PIs.

Select the session you want (named based on original session date).

You can download the file content of the session (click Download button) and/or you can cut and paste the URL link under the description into [...]

24May2008 | Joe Harris | 2 comments | Continued

IronPort Anti-Spy

Marketing sometimes has a way of twisting facts to make them seem ’super’…and if I have visited with or presented to you and/or your organization you will know that I understand marketings purpose but I always defer to the technical detail over the marketing detail. I have taken the next paragraph directly off the IronPort Web Security Appliances website:

“The IronPort® S-Series™ [...]

23May2008 | Joe Harris | 1 comment | Continued