Cisco’s taken umbrage at accusations that its Smart Install (SMI) protocol is vulnerable to abuse.
The problem – if there is one, because “it’s a feature, not a bug” – is that if netadmins are using SMI to auto-configure switches installed in branch offices they need to know it doesn’t enforce authentication.
Original source: The Register
View full story