[tac_plus] DOS attack
Dan Schmidt
dan.schmidt at uplinkdata.com
Thu Sep 13 18:52:38 UTC 2007
I was wondering if anybody was aware of any possible DOS attacks against
tac_plus. One of my coworkers expressed great concern that a DOS attack
could confuse authentication or authorization to the point that the
switch could not properly communicate with tac_plus and would not
default to local. (ie aaa authentication default group tacacs line)
For this reason, he believes line con 0 should not use tacacs so that it
can be a backup.
I am aware that this may be a bad forum to ask such a question, but I
thought that because the answer could relate directly to tac_plus I
would ask this question here. If there is a more appropriate place to
inquire, please inform me.
Thanks for your comments,
-Dan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.shrubbery.net/pipermail/tac_plus/attachments/20070913/448bdc82/attachment.html
More information about the tac_plus
mailing list