Look all I’m saying is if you’re putting management interfaces on the web, you’re asking for trouble.
-
Look all I’m saying is if you’re putting management interfaces on the web, you’re asking for trouble.
Palo Alto Networks warns of potential PAN-OS RCE vulnerability
Palo Alto Networks warned customers to restrict access to their next-generation firewalls because of a potential remote code execution vulnerability in the PAN-OS management interface.
BleepingComputer (www.bleepingcomputer.com)
-
Merry Jerry 🎄🎅🕎⛄️❄️replied to Security Writer :verified: :donor: last edited by
@SecurityWriter but… zero trust
-
Security Writer :verified: :donor:replied to Merry Jerry 🎄🎅🕎⛄️❄️ last edited by
@jerry I have zero trust that the people you work with whose job it is to NOT configure management interfaces with their butthole whistling in the wind.
Christ once I found a BGP box with a direct cable run of about 80m through the ceiling cavities to an iDRAC NIC of a prod rack for a F500 company selling… security products
-
pasta la vidareplied to Security Writer :verified: :donor: last edited by
"but if our baseboard management controller is on a KVM on a VPN that's behind a firewall to only allow IPs from our sysadmin's home IPs"
second idea: "but if our KVM only allows connections from tailscale, which does its own holepunching, no ports are ever opened and everything is machine-to-machine keyed"
