Archive for the 'IPS' Category

DoS TCP SYN Attack Mitigation

Friday, August 21st, 2009

TCP SYN flooding is often used in conjunction with IP spoofing. The main aim of a TCP SYN flood is to send a TCP SYN packet to a host inside your network from a spoofed IP address. The TCP SYN ACK is then sent to a machine that is not expecting one, or a machine [...]

Decrypting Type 7 Passwords (enable password)

Wednesday, August 19th, 2009

The big difference between the enable password and the enable secret is the encryption level. The enable password by default is saved in clear text so when looking at the running-configuration of the router you will be able to read the password. It is possible to encrypt this password using the service password-encryption command.   [...]