 
| Subject: | |
| From: | |
| Reply To: | |
| Date: | Sat, 19 Jul 2008 08:21:17 -0400 |
| Content-Type: | text/plain |
| Parts/Attachments: |
|
|
Hey Chad,
Yes we are talking about the same thing.
It's really up to you if you want to disable CSRF or not. Here is an
entry describing these types of attacks:
http://en.wikipedia.org/wiki/Cross-site_request_forgery
So if your CAM is on the internet and people can reach it, probably not
a good idea to turn it off. But if its on an internal protected subnet,
and you have other safeguards in place, and cannot live with the 15-20
seconds that it takes that page to load, then you can turn it off (this
feature was added in 4.1.3 so it wasn't on before then anyways).
Nate
Chad Smith wrote:
> Thanks, Nate. I did read that. Here is the information I was given.
>
> DE provided workaround:
> /perfigo/control/tomcat/normal-webapps/admin/WEB-INF/web.xml
> + <!--
> <filter-mapping>
> <filter-name>CSRFFilter</filter-name>
> <url-pattern>/*</url-pattern>
> </filter-mapping>
> + -->
>
> Does that seem like something safe to do? Or is this not even the same item
> that we're talking about?
>
> -Chad E Smith-
> University of Dayton
> Network Engineer
>
> On Fri, 18 Jul 2008 15:28:41 -0400, Nathaniel Austin <[log in to unmask]>
> wrote:
>
>
>> http://www.cisco.com/en/US/docs/security/nac/appliance/release_notes/413/41
>>
> 3rn.html#wp313177
>
>> Chad Smith wrote:
>>
>>> Nate, what are these "security issues"? We had the same slowness and my
>>>
> TAC
>
>>> engineer suggested we comment out the CSRFFilters.
>>>
>>> -Chad E Smith-
>>> University of Dayton
>>> Network Engineer
>>>
>>> On Fri, 18 Jul 2008 12:48:35 -0400, Nathaniel Austin
>>>
> <[log in to unmask]>
>
>>> wrote:
>>>
>>>
>>>
>>>> Hi Wendy,
>>>>
>>>> The cause for issue 1 is the CSRF security enhancements that were made
>>>> in 4.1.3.x. If you disable CSRF (not recommended due to security
>>>>
> issues)
>
>>>> the delay goes away.
>>>>
>>>> Last I knew development was looking into it.
>>>>
>>>> Nate
>>>>
>>>> SHIH, WENDY wrote:
>>>>
>>>>
>>>>> Hi,
>>>>>
>>>>> We just upgraded CAM/CAS from 4.1.1 to 4.132 version with in-band
>>>>> implantation. We only have 200 users now but are experiencing slowness
>>>>> issue in CAM. Not sure if you have similar issue or have suggestions
>>>>> for below:
>>>>>
>>>>> 1. I noticed that when I select either Rules or CCA Report after
>>>>> upgrade, it takes over 10 to 15 seconds which is very slow in
>>>>> comparison to before upgrade. The CAM CPU average usage is around 2
>>>>> -10% but at times peaked to 30% most.
>>>>>
>>>>> 2. In report, I can click on “Export” and save the file but if I
>>>>>
>>>>>
>>> click on “Export (with Text)”, then I receive server out of memory
>>> error. “Apache Tomcat/4.131 Caused by: java.lang.OutOfMemoryError”.
>>>
> The
>
>>> CPU peaked to 25% when I run this command.
>>>
>>>
>>>>> 3. We are not using cisco gear and this is the last upgrade we can
>>>>>
> do
>
>>>>>
>>>>>
>>> on our hardware. I like the new features in 4.132 agent and would like
>>>
> to
>
>>> solve this issue before the mass comes back.
>>>
>>>
>>>>> Thank you in advance.
>>>>> Wendy Shih
>>>>>
>>>>>
>>>>>
>>>> ========================================================================
>>>>
>>>>
|
|
|
