Fortigate 5.2 Vulnerability: SSH/SSL – Weak Encryptions

Known issue to: FortiOS 5.2.x (can also apply to higher versions). But 5.4.x and later has already disabled weaker ciphers DES, RC4 and SSLv3, so Firewalls running on later version are less-prone to vulnerabilities.     Recommendations/Mitigations:  What does strong encryption do? Enabling the use of strong encryption will only allow strong ciphers such as: AES … Continue reading Fortigate 5.2 Vulnerability: SSH/SSL – Weak Encryptions

TSHOOT: VPN L2TP not working on some Windows machines

Problem: Client behind NAT devices are unable to connect to VPN L2TP Solution: Modern Windows devices do not support L2TP/IPsec connections when the Windows computer or VPN server are located behind a NAT. If the Windows VPN client fails with Error 809 when trying to establish a VPN connection to an MX located behind a … Continue reading TSHOOT: VPN L2TP not working on some Windows machines

Facebook adds Google Authenticator for Two-Factor Authentication

Good news! Facebook now makes Two-Factor Authentication (2FA) easier to set up by allowing common third-party apps like Google Authenticator or Duo Security on both desktop and mobile. 2FA adds layer of security to your Facebook login by requiring you to provide a passcode or from “something that you have” (which is the 2FA generated … Continue reading Facebook adds Google Authenticator for Two-Factor Authentication

Cisco device serial number explanation

Cisco devices have a standard serial number, from the serial number you can work out it's age and the location it was built. To decipher the serial number, here's how it is composed. Cisco S/N format is LLLYYWWXXXX. LLL = Location code (i.e. FOC = FoxConn China) YY = Year code (08 = 2004...09=2005...etc...) WW … Continue reading Cisco device serial number explanation