Why is a level 5 vulnerability like CVE-2022-41080
MS.Exchange.Server.OWA.Remote.Code.Execution STILL set as pass in the
IPS database? Thousands of Exchange servers are vulnerable, and Fortinet
has the necessary protections but is just sitting on it ...
Could someone confirm or comment on the following behavior for SSLVPN
tunnels. On older Fortigate firmwares I had users enables with Web mode
and tunnel mode VPNs. For Tunnel mode I create a separate user group for
each firewall policy i.e. RDP_users...
I have a client that recently started using a cloud hosted LOB
application with an IPSEC Site 2 Site tunnel. The vender wants to be
able to connect via SNMP to monitor the interface for any performance or
connection issues.I am not familiar with SNMP...
Can FSSO work in a small AD network with 2 DC's using the FG as a Local
FSSO poller (Agentless)I have it configured with 2 SSO connections one
to each DC but it does not seem to be capturing logons to the 2nd DC. I
have seen mixed information as to i...
I have many FortiGates in production. I really value the product a lot
and don't want to bust your chops but I have to. This is a critical
vulnerability. There is no excuse for the default not to be blocked
CVE-2022-41080. 100% of Critical vulnerabil...
Your risk analysis needs to be reevaluated. What is the bigger threat to
revenue. A possible edge case bad ips pattern file that could be easily
detected in logs or a trivial full system access compromise of thousands
of different products on million...
I just ran into this for the first time. While it is a little fuzzy, I'm
not sure what the confusion is on who's responsibility it is. There is
an RFC for TLS, and my understanding; feel free to correct me if I am
wrong, is that the RFC allows a cert...
