The checkpoint sk article isn't that helpful... what it should say is... If you have your encryption domain set as "defined by topology", then check your topology!
sourcefire virtual sensor system requirements
I don't know why but the system requirements for sourcefire's virtual sensor is burried in the wording of their datasheets... anyway saved here so ease of reference :)
Sensor
VMware ESX/ESXi 4.1/5.0 or Xen 3.3.2/3.4.2
at least one CPU
min ...Juniper Networks Certified Specialist - Security (JNCIS-SEC)
Sourcefire Certified Security Engineer (SFCE v5)
mod_security and WordPress with Commands in Permalinks (urls)
For a long while now, one of my oldest posts (nagios ping tool) returned a 403 error and I couldn't work out why... a recent post about curl also fell foul of the same issue so I've been forced to work out why ;)
The main challenge that I ...
Hacking Cisco ISE UDI
The back story... you've deployed your ISE appliance and the world is great! Your management need you to make a change "right now" but that virtual machine ...password-less ssh login to JunOS
Juniper (JunOS) SRX's support ssh public key authentication.
nick> show configuration system login | display set set system login user nick uid 2001 set system login user nick class super-user set system login user nick authentication ssh-rsa "PASTE_KEY" nick>No-one likes to type passwords!
Blue Coat Proxy, iPhone's multiple authentication issues.
Recently a colleague pointed me at the following Blue Coat KB about NTLM issues as basically the iPhones on the corp network were getting multiple authentication challenges even though the username & password are saved in the connection profile!
To resolve we created a second authentication realm on the bluecoat with ...
Cisco ASA Firewalls and IP Ranges in ACLS
I've google'd and I cannot find a way of creating a firewall range style object in an ASA, you know the kind of thing whereby you want to allow IP addresses 192.168.1.10 thru 192.168.1.20 in an ACL.
In my frustration I have ...
Secret Keys for the Cloud
I've had an idea, whether it's a good one or not is yet to be seen; one of the big issues to cloud application and servers is encryption key management, there is a simple chicken n egg issue, if the secret key is on the server/application then ...
