Browsed by
Category: INFOSEC

FN-70489: PKI Self-Signed Certificate Expiration

FN-70489: PKI Self-Signed Certificate Expiration

With the release of Star Wars TRoS this past Friday, the only “FN” on most people’s minds was FN-2187 (Finn). However, another FN was released on December 17th and that’s the topic of our post today. FN-70489 Now this FN on the surface sounds VERY concerning, but let’s dive a little deeper to see if in fact, you may be impacted. The most important statement is in the “Note” of the Problem Description “To be impacted by this issue, a…

Read More Read More

KRACK

KRACK

  (K)ey (R)einstallation (A)tta(C)(K) Breaking WPA2 by forcing nonce reuse It’s been a long day and I wanted to have some fun with this post. I was onsite with several customers today when the news broke publicly. I only knew about it at a high-level in the morning and didn’t have time to digest the magnitude nor details of the vulnerability until this evening. You see, for me this feels somewhat like Deja Vu. I remember the day when it…

Read More Read More

ConfigBytes: ASA 5506x w/ FirePOWER Services

ConfigBytes: ASA 5506x w/ FirePOWER Services

#ConfigBytes Getting Started with the ASA5506x & FirePOWER Services   Official Quick Start Guide: http://www.cisco.com/c/en/us/td/docs/security/asa/quick_start/5506X/5506x-quick-start.html FirePOWER User Guide: http://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa-firepower-module-user-guide-v541.html FirePOWER Services for ASA Data Sheet: http://www.cisco.com/c/en/us/products/collateral/security/asa-5500-series-next-generation-firewalls/datasheet-c78-733916.html   TL:DR Key Points Since the ASA5506x doesn’t have built-in switch capabilities (yet), you will need a L2 switch to connect the management interface which is used for firepower services module and your inside ASA interface for management. If you have an L3 switch the FirePOWER management interface can be on a different subnet from your inside…

Read More Read More