WordPress database error: [Duplicate entry '62552' for key 1]
INSERT INTO wp_bas_visitors (visit_ip, referer, osystem, useragent, lasthere) VALUES (644300604, 1, 745, 3655, '2008-11-21 11:58:15');

WordPress database error: [You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'AND referer = referer_id AND osystem = os_id AND useragent = ua_]
SELECT * FROM wp_bas_visitors, wp_bas_refer, wp_bas_ua, wp_bas_os WHERE visit_id = AND referer = referer_id AND osystem = os_id AND useragent = ua_id

WordPress database error: [You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ' '2008-11-21 11:58:15', 0, 1693)' at line 1]
INSERT INTO wp_bas_log (visit, stamp, outbound, page) VALUES (, '2008-11-21 11:58:15', 0, 1693);

The Sys-Security Group » Blog Archive » From BlackHat to BlackHat, any changes to bypass-able NAC solutions?
« Blackhat DC 2007 / EUSecWest 07
Defected from Apple iPod, got a Sony S2 Sports Walkman »

From BlackHat to BlackHat, any changes to bypass-able NAC solutions?

Last week I was asked by a reporter whether any of the NAC bypass issues I discussed in my BlackHat USA 2006 presention (August, 2006) have been remedied in the six months since then.

My answer was no. In other words, those that could be bypassed then can still be bypassed today.

The question was in light of the upcoming BlackHat DC 2007 (February, 2007) conference where I will be giving an updated presentation about bypassing NAC. In fact, I will present more ways to bypass NAC and with more examples of NAC solutions that are vulnerable.

One trend I have identified in the last six months is the growing number of IT professionals who understand what NAC is; what it should and should not provide. They are asking the right questions when examining NAC solutions (see: The Definition of NAC and Questions to ask in a NAC RFI/RFP)

A NAC solution that can be bypassed or does not identify elements operating on the network is not a solution someone should consider. It actually creates a false sense of security and cannot meet an organization’s compliance requirements.

This entry was posted on Saturday, February 24th, 2007 at 4:21 pm and is filed under NAC, Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

You must be logged in to post a comment.