got a little Cisco PIX 501 on the rack. Only vulnerability I know about that could hit it is the uh.. SNMP exploit for DOS attacks. the VPNC exploit in 6.3.x isn't really a concern since nobody here gets to VPN.
our connection is contracted through the IT group at the distributor. car dealership's work kinda funny. no clue what they have on their end, and after having to talk to their techs, I don't trust it anyways.
There are only 3, thankfully, major security issues I have to keep my eye on full time here.
1) Information theft, that can lead to a hefty lawsuit by customers. That's the most major concern because... well... they've rammed it down my throat... but I don't make policy, I just enforce it.
2) Spyware & malware caused by (*@&# salespeople. I'm terrified of the day a customer hops on a kiosk PC, and the porn popups start spamming little bobby (see previous statement about lawsuit). I'll catch the fallout from that one, even though I didn't cause it, and am doing by best to prevent it... keeping thorough traffic logs in my safe for the day I have to defend myself.
3) Somebody hijacking the customer lounge wireless access. Can't fire up WEP or WPA cuz "everybody" is supposed to be able to use it. I have it isolated in a 192.x.x.x range, on it's own, very limited router, away from all of our live IP's. At least the building keeps the signals pretty well inside. Failing that, I have a wifi detector & a cattle-prod (BOFH is my hero) to ensure "site security". Customers are on their own, must protect their own stuff, but occasionally when I see wide open shares, I look around for them and point it out.
