Computerworld
Quick Menu
Search



Ads by TechWords

See your link here


Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Networking
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 

Computerworld 2007Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Opinion: Network managers: good worries, disappointing lapses

By Scott Bradner
Comments
0
Recommended
161



May 8, 2008 (Network World) VanDyke Software recently published results of the fifth annual edition of its survey of network and systems administrators. The company hired Amplitude Research to conduct and analyze the survey.

Most of the survey questions concerned security, as it should be, considering the importance of that topic. The general results (also covered by Network World's Denise Dubie) are generally realistic -- managers felt issues that they might have an ability to affect were more important than some of the issues (like user training) that managers often feel are impossible or at least outside their ability to control. But behind the headlines there were some results I found surprising and not just a little disappointing.

Most usefully, because VanDyke has been commissioning this survey for five years, one can get a sense of the changing management pain points. Issues that managers who answered the survey this year felt to be most important were securing remote access (up in importance over the last five years), keeping virus definitions up to date (down quite a bit over the same period) and monitoring intrusions (which has stayed about the same).

The biggest decline in importance over the five years the survey has been run is patching systems. I expect this is not because the need to patch has decreased in any way but because patching systems are now quite mature and thus are not a significant worry. I also expect that the drop in importance of keeping virus definitions up to date has happened for the same reason.

For all the focus on real problems mentioned by the survey, a few important ones seem not to be getting proper attention.

More than a quarter of network managers admit that they are still configuring their network devices using insecure telnet, and more than a third are using insecure HTTP rather than using secure SSH or HTTPS.

While this is down quite a bit from five years ago, it is still far too high. I only hope that there are no cases where the network manager has to access the network devices while at a conference or hotel. It's easy to hand control of your network devices to a random observer in such cases. A tale from long ago illustrates the potential for mischief when passwords get leaked, as they can be with telnet and HTTP.

The router passwords for a good-sized ISP got compromised. One day someone logged into each router in succession, starting with the ones furthest out. This person proceeded to turn off each outward-facing interface and change the password on the router. It did not take long for the network to have the forwarding ability of a pile of bricks.


Reprinted with permission from

For more information about enterprise networking, go to NetworkWorld.com
Story copyright 2008 Network World, Inc. All rights reserved.

Make a Comment Recommend Story Slashdot this Digg this
Print Story Send Feedback Email this Reprints

Related Content

Webcast: Simplifying the Data Center Network
Whitepaper: Implementing VMware Server Virtualization on Juniper Networks Infrastructure

CW Report: Compterworld Technology Briefing: Intelligent Users Use Business Intelligence
Microsoft releases Vista SP2 beta
When Is a Patch Not Really a Patch?
Vista SP2 due next April, says report
Microsoft warns of new Windows attacks
Look for managed network services to grow as economy tanks, industry experts say

Today's Top Stories

Clues point to Jan. 13 release of Windows 7 beta
Microsoft releases Vista SP2 beta
Obama's DHS pick may find support for raising H-1B cap at confirmation hearing
IBM wants info from Apple execs in Papermaster case
License server glitch exposes SonicWall users to e-mail security threats
Report: Former AOL chief exec tries to raise funds to buy Yahoo

What People Are Saying

See comments | Add new
See comments | Add new

Resource Alerts

to receive Networking and Internet Resource Alerts

Webcasts

Real-time collaboration and development with IBM® Rational® Team Concert streamlines any project

Web Threats Don't Discriminate

Simplifying the Data Center Network

Whitepapers

Designed to Manage Lean Principles

The 2008 ERP in Manufacturing Benchmark Report Summary

Implementing VMware Server Virtualization on Juniper Networks Infrastructure

Computerworld Reports

Computerworld Report- Large Enterprises Pay More for IPAM

Mobility @ the Speed of Business

Compterworld Technology Briefing: Intelligent Users Use Business Intelligence

Editor's Picks

Clues point to Jan. 13 release of Windows 7 beta

Microsoft releases Vista SP2 beta

Obama's DHS pick may find support for raising H-1B cap at confirmation hearing

IBM wants info from Apple execs in Papermaster case

License server glitch exposes SonicWall users to e-mail security threats

Report: Former AOL chief exec tries to raise funds to buy Yahoo

XenServer FREE trial
XenServer FREE trial
Citrix XenServer is the simplest and most effective way to virtualize and provision servers. XenServer combines comprehensive server virtualization capabilities with unparalleled scalability, performance, economics, and ease-of-use. Based on the open source Xen hypervisor, XenServer delivers fast performance, easy management, and advanced features such as live migration.

Request free trial now

Your Say
Chrome a Windows killer?
Anonymous wrote: Having to be connected to use apps that are not inherently dependent upon being connected is a liability...
[read the story | have your say]
Hot topics now:
White Papers
Accelerate your pursuit of perfection
For almost 80 years, Kodak has been helping banks, insurance companies, healthcare providers, government agencies and other businesses produce billions of document images. So Kodak is uniquely positioned to know and deliver–what customers want: easy-to-use scanners that output the best possible image quality.
Download this white paper now! 
TODAY'S TOP BLOG
Patrick Thibodeau:
Satellite images of U.S military bases Which is more important? Helping terrorists or protecting military bases? Answer: protecting Web 2.0 ... [more]
White Papers
Read up on the latest ideas and technologies from companies that sell hardware, software and services.
The 2008 ERP in Manufacturing Benchmark Report Summary
IronPort Web Reputation Filters Tech Note
Designed to Manage Lean Principles
View more whitepapers 
 

Keys to Microsoft application acceleration: advances in delivery systems
Simply designing a data center that only deploys more servers, more storage, and more devices significantly increases network complexity and cost. You can now ensure significantly faster access to the Microsoft applications your users depend on.

Download this whitepaper 
Next Gen Load Balancing: 8 Things You Need to Handle Today's Network Traffic
Learn how you can replace your aging load balancer with a true web application delivery appliance that provides 100% availability through full Layer 7 awareness and intelligent traffic management and delivers web apps with the highest performance and security possible.

Download this white paper 
Constellation Brands Case Study
Learn why a $6.5 billion international producer and marketer of alcoholic beverages chose Citrix NetScaler to increase Web app performance and ensure high availability of global intranet and public Web sites.

Download this case study 
Welch's Case Study
Learn why a large US food processor chose Citrix NetScaler to securely deliver a new Oracle ERP solution to external partners and remote users. You'll learn how Welch's was able to add 250 new users without expanding their IT staff or taxing the availability of their network resources.

Download this case study 
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDG Connect IDG World Expo Infoworld
The Industry Standard ITworld JavaWorld LinuxWorld MacUser Macworld Network World PC World Playlist
Copyright © 2008 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.