May 18, 2009 at 14:35And now the promised task is more complicated
I hope you are not tired of flexing your brain :) The
promised task. It is also published on military anticisko.ru. I hope that the people will also be connected there, it will be possible to peep :)) The
task, naturally, is speculative. It has not only one, but at least 2 completely different solutions. No need to scold me for isolation from life: this is training :) So:
_________________________________________________________________________________________
_________________________________________________________________________________________
Let you be an unjustly offended employee of the IT department who stayed at night ostensibly to work, but actually nurture formidable plans for retaliation!
Your task is to gain access to the privileged mode of the cisco router, which stands as a gateway to the Internet.
You made your way to a small server room, saw a router. That's all, but alas, you once caught the eye of a piece of the config of this router. Here it is:
no service password-recovery
!
access-list 1 permit host 4.4.4.4
!
line vty 0 4
no login
privilege 15
access-class 1 in
You do not know the password for enable mode.
You couldn’t bring anything into the server room, but right next to it on a shelf you saw an ownerless ASA 5510 in a box with an AIP-SSM module. There, in the server room, the computer with the console also buzzed, but alas, there was no network card in it.
ASA turned out to be new, not yet printed, with a pair of Ethernet wires, as expected, with an empty config, so you can use it however you want.
(Hint: You can give commands on the router from unprivileged mode.
Can you achieve your goals?
Go for it!
ATTENTION: sprinkle ash on my head! Forgot one line in a config !!! See line access-class
promised task. It is also published on military anticisko.ru. I hope that the people will also be connected there, it will be possible to peep :)) The
task, naturally, is speculative. It has not only one, but at least 2 completely different solutions. No need to scold me for isolation from life: this is training :) So:
_________________________________________________________________________________________
_________________________________________________________________________________________
Let you be an unjustly offended employee of the IT department who stayed at night ostensibly to work, but actually nurture formidable plans for retaliation!
Your task is to gain access to the privileged mode of the cisco router, which stands as a gateway to the Internet.
You made your way to a small server room, saw a router. That's all, but alas, you once caught the eye of a piece of the config of this router. Here it is:
no service password-recovery
!
access-list 1 permit host 4.4.4.4
!
line vty 0 4
no login
privilege 15
access-class 1 in
(this is new but mandatory)
You do not know the password for enable mode.
You couldn’t bring anything into the server room, but right next to it on a shelf you saw an ownerless ASA 5510 in a box with an AIP-SSM module. There, in the server room, the computer with the console also buzzed, but alas, there was no network card in it.
ASA turned out to be new, not yet printed, with a pair of Ethernet wires, as expected, with an empty config, so you can use it however you want.
(Hint: You can give commands on the router from unprivileged mode.
Let it be so interactive: you ask what command you want to output, I write it to you.)
Can you achieve your goals?
Go for it!
ATTENTION: sprinkle ash on my head! Forgot one line in a config !!! See line access-class