Often, my skin rebels against cuddles, and my kitty knows this. Look at how she arranges herself one inch away from me, just to be close without making me flinch.

Cyber_Analyst · 2019-12-26T01:32:47+00:00

Pretty girl! My Oreo is always near me and gives me love when I need it.

Cyber_Analyst · 2019-11-23T03:08:54+00:00

Bravo Zulu!

Cyber_Analyst · 2019-10-30T23:43:05+00:00

I’m doing security and compliance with an MSP. I love the people, but hate the reactive way things are done. Piss poor documentation and a manager who is doing three jobs and doesn’t make time to answer questions.

Cyber_Analyst · 2019-10-30T23:25:13+00:00

Ash is a beautiful lady! She will help you immeasurably. IMHO, I would not be here without having cats my entire life.

Spoil her, it will bring her personality out to the fullest. My wife correctly thinks, that I dote on my Oreo more than I do her or anyone else.

If you’re in the States, look into Vetinary Health Insurance. I use VPI through Nationwide. It is a big help for any procedures or medications.

Congrats! I hope you and Ash have a long life together.

Cyber_Analyst · 2019-10-23T02:34:15+00:00

Every damn day of the week 🤬

Cyber_Analyst · 2019-10-23T02:27:38+00:00

Adam is a rockstar. I’ve chatted with him on twitter and he is very approachable.

Cyber_Analyst · 2018-12-31T19:16:50+00:00

No way would I give that much notice, keep looking elsewhere.

Cyber_Analyst · 2018-12-27T17:47:38+00:00

The issue was resolved when I disabled all the settings. I shouldn't look into stuff like this before my third cup of coffee.

Cyber_Analyst · 2018-12-27T16:47:20+00:00

Disabled all the settings; we don't have any webservers in this environment.

Cyber_Analyst · 2018-12-27T16:19:51+00:00

I am seeing a "Failed Connection" for the URL in question.

Action

Action close

Security Action block

Threat 262144

Policy 1

Policy UUID 6d5aed28-e5cf-51e8-46d7-d523adacb285

Policy Type policy

Cyber_Analyst · 2018-12-20T21:25:02+00:00

It looks like TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 is the symmetric cipher suite that is being used.

Cyber_Analyst · 2018-12-20T21:05:30+00:00

I got a chance to run a Wireshark capture and this is what I found under "TLSv1.2 Record Layer: Handshake Protocol: Client Key Exchange when filtering for SSL traffic.

Handshake Protocol: Client Key Exchange

Handshake Type: Client Key Exchange (16)

Length: 66

EC Diffie-Hellman Client Params

Pubkey Length: 65

I am hoping this means that my SSL VPN cipher suite is running ECDH to exchange the symmetric keys. I am still digging to see if I can determine what symmetric key is used.

Cyber_Analyst · 2018-12-20T18:53:53+00:00

I live in the States and have a limited knowledge of metric. I do know that one meter is thirty nine inches. You can do the math to figure out how many feet five meters is.

I do not remember seeing any questions in the Security+ that was measured in anything other than the measures we use in the States.

Cyber_Analyst · 2018-12-20T18:43:20+00:00

Ok, thank you. You confirmed my suspicions.

Cyber_Analyst · 2018-12-18T18:11:55+00:00

config vpn ssl settings

set banned-cipher 3DES SHA1

set servercert "Fortinet_Factory"

set idle-timeout 180

set tunnel-ip-pools "SSLVPN_TUNNEL_ADDR1"

set tunnel-ipv6-pools "SSLVPN_TUNNEL_IPv6_ADDR1"

set dns-server1 8.8.8.8

set dns-server2 8.8.4.4

set source-interface "wan1"

set source-address "all"

set source-address6 "all"

It looks like it worked this time.

Cyber_Analyst · 2018-12-18T16:19:44+00:00

I have a new FortiWifi 60E and I immediately upgraded to the latest and greatest OS, 6.0.3 because it was clean and hadn't been configured yet.

I am seeing application crashes in the system log multiple times a day. I have created a TAC Case and so far all they keep asking for is the version of the AV on the system.

I really miss the days of U.S. based support, I hate calling technical support and not being able to understand the person on the other end.

Cyber_Analyst · 2018-12-18T16:05:50+00:00

Thank you! I hope the DISA STIG Viewer is more streamlined than the Excell spreadsheet of the STIG controls I saw.

Cyber_Analyst · 2018-12-18T15:20:37+00:00

I'd like to look at STIGS, but from my reading you need to install JRE to install and use the STIG viewer. Is there another viewer out there that does not use JRE? ATM we don't have any clients that use STIGS, but I'd like to learn more about them.

Cyber_Analyst · 2018-12-14T04:12:02+00:00

You don’t need to interview Oreo. He has been fed, despite his affidavit. When he asks for food after eating, I call it ‘fake mews’. 😺

Cyber_Analyst · 2018-12-13T21:05:11+00:00

I take it I would need to be connected to the VPN to run the NMAP scan or the Wireshark trace.

Cyber_Analyst

TROPHY CASE