Suspended for hacking NAC
Tim Greene over at NetworkWorld probably does the best job of covering the NAC beat of any reporter out there. I really look forward to his newsletter and articles. Today he had a good one on some poor student at the University of Portland who discovered a way around Cisco's Clean Access NAC appliance and was able to get on the network without being scanned. His reward was a suspension from the school. By the way this was not the using the now infamous two holes recently announced and demonstrated at Black Hat. This was yet another way specific to Cisco's Clean Access NAC appliance. The student was no grad student either, just a sophomore.
The good news is Cisco has now plugged the hole by changing the default setting for a device that cannot be scanned. The bad news to that is that I would imagine that all devices that are not scannable by the system will be denied access (handheld devices, game consoles, IP phones, etc.).
In the meantime all of these holes in Cisco's NAC gives Ofir and the "you can't trust the endpoint" crowd more ammunition. Ofir is quoted in the article and I have to agree with what he says about this one.
Comments