Cybersecurity - Memes

2050 readers

110 users here now

Only the hottest memes in Cybersecurity

founded 2 years ago

MODERATORS

Sam1232188@lemmy.world

neurohost@lemmy.world

CannaVet@lemmy.world

Alphadef@programming.dev

116

Firewall vendors in 2024 (feddit.org)

submitted 1 week ago* (last edited 1 week ago) by cron@feddit.org to c/cybersecuritymemes@lemmy.world

17 comments fedilink hide all child comments

Fortinet, Palo, Checkpoint, Cisco, Sonicwall ... is there any big firewall vendor that didn't have any critical vulnerabilities last year?

you are viewing a single comment's thread
view the rest of the comments

[–] M33@lemmy.sdf.org 31 points 1 week ago (3 children)

Obsolete binaries not updated for years, hardcoded secrets… this is what you get in firewalls like any other piece of black box equipment.

[–] MajorHavoc@programming.dev 6 points 6 days ago

Yep. Closed source is for the software that no one would ever buy if they could read it.

[–] lennivelkant@discuss.tchncs.de 21 points 1 week ago (1 children)

Security by obscurity may work in delaying exploits, but once someone breaks the obscurity, they have a headstart on exploiting it over those hoping to fix it.

[–] cron@feddit.org 15 points 1 week ago (1 children)

Security by old software, or how I call it: the ivanti approach

[–] lennivelkant@discuss.tchncs.de 11 points 1 week ago

That makes me nervous, but I'm not allowed to tell you why

[–] cron@feddit.org 7 points 1 week ago (1 children)

And every service runs as root. This enables the CRL webserver to download /etc/shadow ...

[–] M33@lemmy.sdf.org 5 points 1 week ago

Or user sessions persist on the filesystem so a glitch on the captive portal’s web server allow you to get clear text username and password for currently connected vpn sessions …