Network Ping

New network tools available (2005-01-31)

Network tools like ping, traceroute and dig (for DNS), are now available for members as well as non-members. You can use these tools to investigate the behavior of your servers in more detail.
You can find these tools on the 'Tools' page.

Monitor your transition to IPv6 with WatchMouse (2009-10-14)

You've heard it before, and it's being announced more frequently and louder: The number of available addresses on the Internet is running out, and we all should move to the new addressing scheme, IPv6, as soon as possible. The uptake has been rather slow in the past, but that seems to be changing now as companies, ISPs, and other organizations are taking their first steps on the road to the IPv6 world. For most of these companies, however, this is quite a big step, with many things to consider and many uncertainties.

External IPv6 monitoring

As of today, WatchMouse offers IPv6 monitoring for web sites and other external services of your company. The monitoring network will, just like visitors of your website that happen to be on an IPv6 connected network, connect to your site when an IPv6 record is available in the DNS of your domain.

Check your IPv6 connectivity right now? Just visit our Check Host tool or the Ping tool. And while you're at it, set up a rule in your account to monitor your site continuously from our world wide monitoring network.

Many changes

To fully enable IPv6 monitoring, we have upgraded several components of our infrastructure:

• Our worldwide monitoring infrastructure, including the monitoring software
• The backend systems, including our databases and the WatchMouse API (see a post on this on WatchMouse Labs).
• The configuration portal (settings), where you can now specify whether or not to monitor over IPv6, if possible.
• The free tools on our site: check host and ping.

By offering IPv6 standard in all packages (including the free package and the 30-day trial) and in the tools on our site, we hope to facilitate a smoother transition to IPv6 in your organization.

Is your company interested in IPv6? Then do keep an eye on our IPv6 posts on WatchMouse labs.

Nortel Networks Multiple UNIStim VoIP Products Remote Eavesdrop Vulnerability (2007-10-24)

Multiple Nortel Networks UNIStim VoIP telephony products are prone to a remote vulnerability that may allow eavesdropping.

Attackers can exploit this issue to open an audio channel with the phone's microphone. This will allow attackers to remotely eavesdrop on arbitrary conversations and gain potentially sensitive information that could aid in further attacks.

Multiple Vendor SNMP World Writeable Community Vulnerability (2008-04-11)

In a number of network devices/operating systems there exist default communites which are world writeable. By being world writeable, they allow remote users to configure properties of the device/OS without any authorization other than knowledge of the community name.

Some of the common default communities/vendors are:

public (ascend,cisco,bay networks (nortel),microsoft,sun,3com, aix)
private (cisco,bay networks (nortel),microsoft,3com, brocade, aix, netapp)
write (ascend, very common)
"all private" (sun)
monitor (3com)
manager (3com)
security (3com)
OrigEquipMfr (brocade)
"Secret C0de" (brocade)
admin
default
password
tivoli
openview
community
snmp
snmpd
system (aix, others)
the name of the router (ie, 'gate')

The attacks can be things such as routing table manipulation and arp cache corruption, which can lead to further compromise. This type of vulnerability has been known about for quite some time and more information on it is listed in the credit section.

There may be more products shipping with default read/writeable communities. If you have any more information on what may be vulnerable (more specific firmware versions or corrections), email <vuldb@securityfocus.com>.