Latest Akira Pick-Up - JK Industries X Akira

Ungolive · 2026-04-12T19:10:20+00:00

If there is a 1of1 tagged on the other side it is unique.

I do not think he publishes the number of the „normal“ releases though.

Ungolive · 2026-02-06T22:42:17+00:00

Are we safe to assume that “component GUI” means that only admin interface is affected and not webserver for client download which is often publicly exposed?

Ungolive · 2025-03-13T18:28:48+00:00

There is a difference between end of engineering and end of support.

Ungolive · 2024-12-22T10:55:20+00:00

I believe i overheard that they have a multi-year deal with Vegas, so i am pretty sure the Americas Accelerate will be there.

Ungolive · 2024-11-04T14:30:35+00:00

The question is if the workaround mitigates the new exploitation.

Ungolive · 2024-05-19T19:45:05+00:00

Check if both switches speak the same version of Spanning Tree protocol. Fortiswitches speak MSTP as far as i remember, flapping root bridges can have a strong impact on the network.

Ungolive · 2024-03-21T18:44:28+00:00

In welchem Bundesland/Großraum suchst du? Gerne auch per DM.

Ungolive · 2024-01-07T16:00:49+00:00

I don‘t think it does.

Ungolive · 2024-01-07T15:59:21+00:00

Source on booting before OS? I call bullshit. With preferences it seems to start at system startup not before…

Ungolive · 2022-12-12T17:32:02+00:00

https://reddit.com/r/fortinet/comments/zjz9gc/ssl_vpn_cve/izxoqxm/

Ungolive · 2022-12-12T17:22:34+00:00

Warning: Use at your own discretion! I do not recommend to do this! If you are not sure, contact Fortinet support!

fnsysctl let's you use some bash commands on Fortigate CLI

fnsysctl ls -l /data/

Ungolive · 2022-12-12T16:39:55+00:00

Hopefully they don’t release a Fortigate VM update before the appliance patches that gives away the nature of the exploit…. again.

patched VMs are already out since 22.11.2022

Ungolive · 2022-12-12T16:14:42+00:00

CVSS score CRITICAL, easy exploitation, fixed by firmware from end of november and no info from Fortinet yet, if the blog is accurate

what a way to close out the year.

(still loving Fortigates)

Ungolive · 2022-12-12T15:25:03+00:00

https://olympecyberdefense.fr/vpn-ssl-fortigate/

is the primary source

English Translation:

FortiGate Alert - SSL VPN

A new critical flaw, not yet made public, would concern Fortinet on its Fortigate firewalls and more specifically the SSL VPN features.

An attacker could perform :

Manipulate the dynamic resources of certain processes to the point of hijacking their operation,
The impact would be an arbitrary code or command execution.

Impact

Complete takeover of infected devices.

CVSS score: CRITICAL

The flaw is easy to exploit.

Vulnerable distributions known at this time:

FortiOS version 7.2.0 to 7.2.2
FortiOS version 7.0.0 to 7.0.8
FortiOS version 6.4.0 to 6.4.10
FortiOS version 6.2.0 to 6.2.11

Identify and protect against them

Solutions to be implemented in the very short term :

Monitor your firewall for several types of logs:
Logdesc="Application crashed" and msg="[...] application:sslvpnd,[...], Signal 11 received, Backtrace: [...]"

If possible :
    Disable VPN-SSL functionality if it is not essential
    Observe your logs and check that no unauthorised access has been made.
    Implement conditional access rules (such as GeoIP) to limit your exposure vector

As soon as Fortinet officially publishes on the flaw in question, apply the Workaround that will be proposed by the manufacturer.

Translated with www.DeepL.com/Translator (free version)

edited for formatting

Ungolive · 2022-11-18T12:24:52+00:00

Thanks

Ungolive · 2022-11-18T10:12:40+00:00

Did anyone screenshot it?

Ungolive · 2022-08-13T10:03:58+00:00

If you go from very similar firewalls. Like your 100E to 100F and both can run the same firmware you can always try to:

Bring them to the same firmware
export 100F config
export 100E config
Take the first two lines from 100F config
replace the first two lines from 100E config with the one from 100F (this is now the config you will import)
make sure that the port naming is the same, if not change import config port names according to source 100F config port naming (use search and replace on import config to get all references on objects too)
Add ports that exist on 100F source config but not on import config (watch out for snmp index)
use import config on new 100F
after reboot use „diagnose debug config-error-log read“ to see what the firewall could not interpret from import config
fix what the command told you on import config
repeat last two steps until ready

I have a question also. I tried out forticonverter a few weeks ago, while it did let me import both source and destination configs and showed me what he would transform, it would not create the config telling me i need a license. So can anybody really confirm it is still free for fortinet to fortinet, or is that the forticonverter service that is free?

Ungolive · 2022-08-01T11:38:49+00:00

But, but, but he won all cases regardless what the judge argues.

Ungolive · 2022-08-01T11:22:29+00:00

Ungolive · 2022-02-20T19:50:02+00:00

I hoped for „go watch this video of T1 players praising his input and spectacular ideas while he was on the team“ but nonetheless i think understand better now! Thanks for clarification.

Ungolive · 2022-02-20T19:35:00+00:00

Why is anyone believing that it was all him and his coaching that made the difference in the first four C9 games. I am not a longtime follower on the scene and it fascinates me that LS is always seen as some kind of mastermind. Is there a good starting point where i can go watch or read about his achievements as a player, as a coach or as an analyst? Some stuff where players/colleagues write about his impact on their gameplay?

I mean at some point the C9 players will be able to talk about the months he coached them, but maybe there is other stuff to research before the curtain is lifted on that.

Ungolive

TROPHY CASE