I'm running CiscoWorks RME4.0.5 on Solaris 9. I received the following in the security audit for CiscoWorks server. Can someone tell me if it is safe to apply the recommended changes without hurting CiscoWorks functionality?
5.6.19 Sybase Information Disclosure
Observation: The remote database server is affected by an information disclosure vulnerability.
Tool Used: ISS Internet Scanner
Risk - Medium: The remote Sybase SQL Anywhere / Adaptive Server Anywhere database is configured to listen for client connection broadcasts, which allows an attacker to see the name and port that the Sybase SQL Anywhere / Adaptive Server Anywhere server is running on.
Ease of Exploit: Medium difficulty to execute.
Recommendations: Switch off broadcast listening via the '-sb' switch when starting Sybase.
I'm not able to view the bug, is it possible that you can post the content of the bug. anything can be done to make the security guys happy, I understand that recommendations to "Switch off broadcast listening via the '-sb' switch when starting Sybase" is something need to be done in the LMS and we should not do that.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...