.

SF Mayor Breaks Up IT Standoff

<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Thu Jul 24, 2008 10:34 pm

SF Mayor Breaks Up IT Standoff


Nine days after locking down the city's IT system, a disgruntled network administrator invites Mayor Newsom to his cell and gives him the access codes.

San Francisco Mayor Gavin Newsom demonstrated his negotiating prowess July 22 by breaking a nine-day-long standoff between an overly protective city network administrator and the city's attorney and IT department.

The San Francisco Chronicle reported that Newsom obtained the access codes to the city's IT system switches and routers after conferring with embattled network administrator Terry Childs, who has been in jail since July 13 on four felony counts of computer tampering in lieu of $5 million bail.

Childs, a certified Cisco Systems network administrator, changed access passwords for administrators above him because he claimed they were negligent about viruses and malware getting into the system. When he was threatened with suspension and loss of his job for insubordination, he locked down the system and kept the access codes to himself.

Childs was the chief designer of the system's FiberWAN (Fibre Channel-connected WAN), which contains about 60 percent of the city's sensitive HR, payroll and other personal data. The system has been running on virtual autopilot for the last 10 days while Department of Technology head Ron Vinson and others have been trying to regain access. Vinson declined to return numerous messages left on his office phone by eWEEK.

Childs, 43, a resident of Pittsburg, Calif., pleaded not guilty in court July 17 at his arraignment. He will have a bail hearing July 23 in hopes of lowering the $5 million bail levied by a judge last week.

He has worked for the city for five years and makes $127,000 per year.

Last week, the network administrator gave city officials what turned out to be incorrect passwords. On July 21, Childs' defense attorney, Erin Crane, approached the mayor's office about a secret meeting with Newsom, the Chronicle reported.

The visit was so hush-hush that Newsom did not tell District Attorney Kamala Harris or law enforcement officials he was going to do it, Newsom spokesperson Nathan Ballard told the Chronicle.

The city system also handles confidential law enforcement documents, inmates' bookings, payroll records, and departmental e-mail. Apparently, it has no backdoor access, even for highly authorized administrators.

Cisco engineers brought in by the city worked for days trying to break Childs' codes but with only minor success.

San Francisco Chronicle columnists Phil Matier and Andrew Ross have more details on how the standoff ended here.



Original story:
http://www.eweek.com/c/a/Security/SF-Ma ... -Standoff/

Don
CISSP, MCSE, CSTA, Security+ SME
<<

slimjim100

User avatar

EH-Net Columnist
EH-Net Columnist

Posts: 385

Joined: Wed Nov 08, 2006 12:50 pm

Location: Atlanta

Post Sat Jul 26, 2008 11:59 am

Re: SF Mayor Breaks Up IT Standoff

At first I thought this was a lame story since I figured you could just password rover the routers and switches but... It is possible... even with password recovery that is on by default, can be changed so that the boot break process in all the routers and switches could not accessible.. In highly secure networks you might want to turn off the boot break process and this prevents access to the confreg commands that can allow you to reset the password. So if the City really wanted in they would have to wipe all the devices and reset them. To re build a large network from scratch it could take weeks to months since 90% of the people on the network do not know the per-port design and how the VLAN's and links are routed. Now I am not agreeing with the administrator for locking other officials out but with sensitive records like HR he really could of been protecting the city to meet compliance like PIC,SOX, hippa & more...

Interesting little story...


Brian
CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP
<<

LSOChris

Post Sun Jul 27, 2008 8:05 am

Re: SF Mayor Breaks Up IT Standoff

it will be interesting if they ever release how they got into that mess
<<

g00d_4sh

User avatar

Sr. Member
Sr. Member

Posts: 394

Joined: Tue Sep 18, 2007 1:50 pm

Location: Guayaquil, Ecuador

Post Mon Jul 28, 2008 4:15 pm

Re: SF Mayor Breaks Up IT Standoff

I don't remember where I saw it... may have been info world, but there is another article that has quotes from an 'insider' which paints the guy as a bit paranoid, but good intentioned.  He considered his bosses, and appearently a number of his compatriots, as a bit naive and ignorant to be messing around with the routers.  After some big arguments.... he wouldn't give them the 'keys to the kingdom' and they had him arrested over it.  Obviously, stupid idea his side.  On the bright side, the network was working wonderfully while no one could touch it.  Appearently he's an increadibly skilled network engineer.  Has his CCIE and such.
"Bad.. Good?  I'm the guy with the gun"

Return to News from the Outside World

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software