Questions abound as San Francisco struggles to repair locked network
Did anyone in this situation not mess something up?
Computerworld - IT managers and analysts are expressing surprise at the amount of time it appears to be taking San Francisco officials to regain full control of the city's FiberWAN network after a disgruntled network administrator allegedly locked access to it by resetting administrative passwords to its switches and routers.
With few details publicly released on what exactly happened, many are suggesting that the network lockout and the city's response to it point to a failure to implement and manage fundamental security controls.
Terry Childs, a network administrator at San Francisco's Department of Telecommunications and Information Services (DTIS) was arrested on July 13 for allegedly tampering with the network, which carries almost 60% of the city government's traffic. He was also charged with planting network devices that enabled illegal remote access to the FiberWAN network.
He was jailed last week on $5 million bond after refusing to divulge the passwords he had used to block access to the network. Childs, 43, pleaded not guilty to the charges against him at a hearing in San Francisco Superior Court last week. He is scheduled for a bail hearing tomorrow. If convicted on all charges, Childs faces a maximum of seven years in prison.
As of late Monday, the city's efforts to repair the network still remains a "work in progress," according to Ron Vinson, deputy director at the DTIS. Despite round-the-clock efforts with vendors and staffers, the city is still only in the process of determining "what level of illegal access or what level of tampering" Childs was responsible for, Vinson said.
According to Vinson, the WAN is operating normally, but the city has not yet regained full administrative control of all routers. What also remains unclear is whether IT officials have discovered all of the network devices that Childs is alleged to have illegally installed on the WAN, he said. Vinson did not say what exactly the network devices were or what they did, but he claimed that Childs had gone to great lengths to hide them from detection. "We have 60-plus departments that are clients of ours," Vinson said, and the task now is to find out if Childs managed to install the devices at any of those departments.
"That is why we need to do a systemwide analysis of where we are with access," Vinson said. "We don't know what he had access to." He added that the focus right now is on damage containment. "We want to make sure we maintain full operability if [Childs] was to be released on Wednesday" and were to try to gain illegal access to the network, he said. "We want to make sure we are up and running."



- Excel 2010 Cheat Sheet
- Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.
- Overcome Top 7 Admin Challenges of Active Directory
- As Active Directory's role in the enterprise has drastically increased, so has the need to secure the data. Gain insight on creating repeatable,...
- Insiders Can Ruin Your Company. Take Action.
- Did you know that 80 percent of threats to an organization come from the inside? The threat from insiders is often overlooked in...
- Top Solutions and Tools to Prevent Devastating Malware
- Custom malware frequently goes undetected. According to Forrester Research, the best way to reduce risk of breach is to deploy file integrity monitoring...
- Streamline Compliance and Increase ROI
- Streamline, simplify, and automate compliance related activities; especially those that impact multiple business units. This white paper from NetIQ, outlines solutions that will...
- X-Ray of the PCI Process-4 Proactive Steps
- This white paper from Forrester Research Inc., helps break PCI into understandable components. Security and risk professionals will gain knowledge and insight into... All DRM and Legal Issues White Papers
- Optimizing Networks for the Cloud
- Join guest speaker, Rohit Mehra, IDC Director of Enterprise Communications Infrastructure, to explore current trends, discuss best practices for optimizing Data Center and...
- Apps QuickStart Series Part 2: Designing and Deploying SQL Server on VMware vSphere
- Download this webcast to learn about the design considerations for virtualizing SQL workloads, performance and scalability information and high-availability options, as well as...
- Apps QuickStart Series Part 1: Designing and Deploying Exchange 2010 on VMware vSphere
- Download this webcast to learn the virtual hardware design considerations for Exchange 2010, deployment using the building block approach, options for high-availability and...
- Customer Spotlight: How IPC The Hospitalist Company Implemented Oracle on VMware
- Have you been looking to hear about customer's experiences with the new VMware vCenter Site Recovery Manager product? View this webcast to learn...
- Virtualize Business-Critical Applications with Confidence
- Virtualizing business-critical applications has become a key focus for organizations as they move along their virtualization journey. With the launch of VMware vSphere®... All DRM and Legal Issues Webcasts