- Nokia's new N97 vs. the iPhone
- Talk-powered cell phones?
- FBI: Copper thieves jeopardize U.S. infrastructure
- 10 Microsoft research projects
- Smartphone smackdown: Storm vs. iPhone
The high-profile troubles on the city of San Francisco's computer network continue, despite a dramatic jailhouse intervention by the city's mayor this week.
While the city has regained control of the five devices at the heart of its FiberWAN network, which carries data between city government buildings, administrators are still locked out of the city's VoIP system and LANs within the Sheriff's Department and the Recreation & Park Department. Assistant District Attorney Conrad Del Rosario revealed the ongoing problems Wednesday at a bail hearing for Terry Childs, the former network administrator with the city's Department of Telecommunications and Information Services (DTIS) who is accused of holding the city's networks hostage for the past 10 days.
During that time, the networks have functioned normally, but IT staffers have been unable to make administrative changes to some of the city's critical routers and switches. (Read what network administrators can do to thwart insider threats.)
Childs' attorney, Erin Crane, had moved for a reduction in the $5 million bail set in the case. San Francisco Superior Court Judge Lucy McCabe denied that motion Wednesday.
Childs' defense has portrayed him as a capable engineer, surrounded by incompetent management, who simply didn't trust anyone with the administrative passwords to the five network devices at the heart of the FiberWAN. On Monday, Childs had a secret meeting with San Francisco Mayor Gavin Newsom where Childs turned over the passwords.
Del Rosario argued against any reduction of bail, noting that Childs handed over the passwords only after a scheduled July 19 power outage at the city's One Market Street data center failed to take down the FiberWAN. Because Childs did not store network configuration files on the routers' hard drives, a power outage would wipe this information out of memory, disabling the network until it was reconfigured, he said.
The assistant DA said it was "extremely suspicious" that Childs only communicated with the mayor after the network did not go out of service.
In court filings, prosecutors say they do not know where these critical router configuration files are located.
As the city's principal network engineer, Childs worked on about 1,100 networking devices throughout the city, Del Rosario said. Even with the FiberWAN passwords, there are still questions about the rest of these systems. "We do not know whether we have control of these devices," he said.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (5)
Password Recovery usually wipes out configs for security reasonsBy billstewart on July 29, 2008, 3:41 pmUsing router password recovery features is mildly annoying, because it wipes out the configuration for security reasons and you have to rebuild it. That's fine...
Reply | Read entire comment
RE: Can you say "password recovery"......anyone?By Anonymous on July 24, 2008, 1:03 pmMaybe you're not aware of the "no service password-recovery" command for Cisco IOS devices: e.g. http://www.cisco.com/en/US/products/hw/routers/ps274/products_configuration_example09186a00801d8113.shtml Cheers, ahb.
Reply | Read entire comment
Can you say "password recovery"......anyone?By Anonymous on July 24, 2008, 11:19 amThere are ways to recover lost or forgotton passwords on network devices. I do not know the tech specs of the affected devices but the device vendors should be able...
Reply | Read entire comment
Does Herb Tong still have a job?By Anon on July 24, 2008, 11:18 amI sure hope not...how the city of SF could have allowed this scenario to develop is beyond me. His manager and probably even the next fool up the chain should be...
Reply | Read entire comment
HARD DRIVES?By Anonymous on July 24, 2008, 10:50 am"Because Childs did not store network configuration files on the routers' hard drives ... he (Assistant District Attorney Conrad Del Rosario) said" Oh, oh. Where...
Reply | Read entire comment
View all comments