 |
Post ApXTZJcBxk4n4HoLcu by [email protected] |
 |
More posts by [email protected] |
|
Post #ApFREWu0S3Ugots2vg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
There’s rumours flying around social media that Fortinet have another activel… |
|
|
|
Post #ApFRdolNBOGZSBtIAK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog wait, another one? This isn't related to the fortiwlm? This is… |
|
|
|
Post #ApFS9LrKBNeb4mi9Me by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog CVE-2024-48889 published two days ago: https://www.fortiguard.com/… |
|
|
|
Post #ApFTOgTLvOaFIzNDDE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog since they're FIPS-140 compliant, it's okay. |
|
|
|
Post #ApFUtZUY1qR8aPDz7o by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog No it's ok, I didn't really fancy this time off work I'… |
|
|
|
Post #ApFhmvY0vStUMu0YBE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog is somebody trying to set a last minute record for the number of z… |
|
|
|
Post #ApHZb9fAD1DJM19Cy0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Okay, after some amateur reverse engineering - upgrade your FortiGate firewalls… |
|
|
|
Post #ApHdLrMENww03PFoZ6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I'm sold if I see the logo in MS Paint eheh |
|
|
|
Post #ApHfCCQxMxsGQuzBdA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Deep Packet Infection? |
|
|
|
Post #ApHgiO8RV15fwfErZI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Derp Packet Infestation |
|
|
|
Post #ApHkjd5vlVz2RnuYZE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog "I sniffed the packets and they stank". |
|
|
|
Post #ApHwDu30OmKxD1BHai by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Sorry, couldn't resist. |
|
|
|
Post #ApHzIw5KYBh6q3MNZg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Calling this one DerpGate |
|
|
|
Post #ApHziChPuqeLbfDuM4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog lastest version in 7.4, or is 7.2.latest ok? |
|
|
|
Post #ApHzlvFOkAUedetIFk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog DerpiGate has more of a ring to it no? :-) |
|
|
|
Post #ApI3LSyJeGWJEOXbf6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Derp Pocket Incision? |
|
|
|
Post #ApIAkNSC086D2HLDMG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Crisp Packet Ingestion 🙂🤷♂️ |
|
|
|
Post #ApIEXIHUJynx2rLpIm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDogDerpGate, DerpManager, DerpAuthderpinator, DerpWifi... |
|
|
|
Post #ApISMIw4wgZBFSzVQ0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Interestingly, there's only an update for 7.4 |
|
|
|
Post #ApITfRKS42ngjf4zkO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog would people also call this feature „webfilter“? |
|
|
|
Post #ApJefDJNTQMXuodEq8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog after the year they've had we switched on automatic upgrades f… |
|
|
|
Post #ApL8NJdeP2UQ6nSKyu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog any more info on this please? |
|
|
|
Post #ApLBAq0J3cpMaOnKsa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
As an update to FortiOS thing - fixes are out for all the Fortigate versions ex… |
|
|
|
Post #ApLS7Gsgsx3k0T7MP2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Thanks! |
|
|
|
Post #ApSrnoEQLzV3BhL28W by [email protected] |
|
0 likes, 0 repeats |
|
|
|
This is similarish to the Fortigate zero day, also being exploited -in case of … |
|
|
|
Post #ApSsBp2B1PROcu3mGu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Just to widen this out -- I'm aware of a telco which is experiencing denial… |
|
|
|
Post #ApSvjRE0LlI6UYJU5A by [email protected] |
|
0 likes, 0 repeats |
|
|
|
With the Palo-Alto one - if you run the exploit multiple times against a HA pai… |
|
|
|
Post #ApSwCs0dqRz7xb657w by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Deep Fill Mince Pie Inspection |
|
|
|
Post #ApTNkTmn6wCBROrxFw by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog I don’t recall a time when PA correctly inspected DNS. There’s… |
|
|
|
Post #ApTOJjAPusNnHPjAw4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog unless I misread the cve this isnt related to DNSSEC the protocol … |
|
|
|
Post #ApTPT1PTYiiOQ4lc3c by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog yes I think that’s well understood. But I wouldn’t conflate DN… |
|
|
|
Post #ApTPbcUXZeSvk8EgS0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog patching is easier said than done considering PAN has yet to relea… |
|
|
|
Post #ApTc6Qqq6Ldq4I7nYO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
If anybody is dealing with the Palo Alto CVE-2024-3393 situation - they've … |
|
|
|
Post #ApTcHiFTl5gVD81qVM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Also, if you want to know what an impacted box looks like, if you attach a cabl… |
|
|
|
Post #ApTdoPvJ0qaTszkeIa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Tired: running network gear made a country with a proven track record in tech o… |
|
|
|
Post #ApTeFozztEr9TY0szY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog oh, the number of tech companies I've worked at where someone … |
|
|
|
Post #ApTyQxeU3Zyia5XWVs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I get that the consumer gear is shite, and built like Swiss cheese… |
|
|
|
Post #ApTycsbAffQgNofoRs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog is it really that bad? |
|
|
|
Post #ApU78VAK84Ribghmnw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Palo Alto updated their advisory, the DoS issue occurs on the Advanced Security… |
|
|
|
Post #ApV7bNZrcAn0d3NhLc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog is there such a known issue to fail open a Fortinet Firewall at t… |
|
|
|
Post #ApVJzCchC2733RpeUa by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog thats why I was asking because I didn‘t see any direct referenc… |
|
|
|
Post #ApVK8uDgTHnssClB5M by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog ok nvw I was blind. |
|
|
|
Post #ApXTZJcBxk4n4HoLcu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog it seems like it ought to be cheaper to just reverse engineer the … |
|
|
|
Post #Apg3k1foA1TQDsaXiq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
A reminder about this thread for those returning from holiday - if you're u… |
|
|
|
Post #Apg42TTzVLlXgVrG88 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Also, since there's still confusion about the Fortigate issue - no, it isn&… |
|
|
|
Post #ApgWsbqwQXZZQ3F0gS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog |
|
|
|
Post #Aq4o2af64VNtdT5HVo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
The FortiGate issue has an advisory now: https://www.fortiguard.com/psirt/FG-I… |
|
|
|
Post #Aq4y0rwBrwr6B4thbs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Does somebody have a write-up on this? |
