Hello, welcome to the Monday, December 23rd, 2019 edition of the Sandstone Storm Center's Stormcast.

My name is Johannes Ulrich.

And I'm recording from Jacksonville, Florida.

Did he wrote a follow-up to an article that he published last week with Visual Basic for Application macros in AutoCat files.

Now these dot DWG files are OLE files, so some of his OLE tools like OLE dump work just

great for these files and he walks you through the process of extracting these macros.

And Cisco dropped a rather important field notice late last week, noting that if you are using

PKI self-signed certificates, well, they will be expiring with the end of the year.

Turns out in Cisco iOS and Cisco iOS XE, if you're using this feature where you are

creating self-signed certificates, for example, for HTTP or for S-SH remote access to the device,

the expiration date is always set to January 1st, 2020, which is just about a week or so away,

so you certainly need to address that.

Now, there is a software update available for this problem, but applying the software update is not

sufficient.

You also have to create new certificates because otherwise you still run this problem where

certificates will expire next week.

Of course, you can also create certificates using your own certificate authority, for example.

That's probably preferred anyway than just going with self-signed certificates within the

Cisco iOS operating system.

But be aware.

So if you're not able to log in on January 1st, the possible problem is that your certificates expired.

And then it may get really tricky to actually get them updated because you no longer have remote access to that particular device.

...