Do as we say, not as we do: Cisco TAC
Written by Gordon Fecyk, 4/24/2010
CISCO SYSTEMS TREATS every computer security problem as a network security problem. Like treating every problem as a nail when your only tool is a hammer, Cisco has a product to cure every computer security ill, even when it isn't network-related. Toss in their stringent certification regimen that churns out trained network ninjas, and they have a self-perpetuating marketing machine that solves and creates and solves (again) computer security problems.
If Cisco could create a networking appliance that would prevent users from spilling coffee on their keyboards, they'd have a product for you. Only then they'd need another product that would make sure you can still work after their coffee-guard product stops you from working.
They even have a networking product that's supposed to do better than conventional anti-virus software... not that it takes much effort to do that, but that's how absurd their product line gets.
At least Cisco's support people are honest about their irony. According to a support person from their TAC team:
After discussing with the [developers of CCP], it is my understanding that [this bug on CCP] is by design. Essentially CCP is a tool catered for network admins and it is expected the user will have admin privileges on the machine where they install and use the software.
Now I'm all for Cisco's preaching the Principle of Least Privilege and all that, but here Cisco's TAC team is telling me, "Do as we say, not as we do."
And what should I have to worry about? I'm using Cisco CSA, Cisco NAC, Cisco ASA, Cisco ACS, and Cisco MARS in my all-Cisco environment aren't I? All properly licensed and paid-for? I should be able to use my Windows PC with full local admin access, right?
Wrong. All of this after-the-fact garbage makes no difference in the face of new, real computer security threats.
I demand no less from Cisco gear, but Cisco doesn't seem as worried about that sort of thing. After all, if you're really worried, they have another product for you.
Properly licensed and paid-for, of course.
Recently Edited Categories:
All trademarks are property of their respective owners.