[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] Securemote problem.... May be a security risk ...
Title: Securemote problem.... May be a security risk ... I now have a few users on the Checkpoint database and a few on the LDAP database... (We intend to migrate to LDAP so we now have both..) We are enforcing policy on all adapters. To reproduce the bug, log in securemote with CP-DATABASE-USER , then disable policy. (You should not be able to connect anymore...) then reauthenticate using LDAP-USER. Notice that you are authenticated and that the lock is no longer on the enveloppe ! so you have access to your network without policies !! WHY !????? BTW, it works if you just start securemote, disable policy, and log as a LDAP user... But I wanted to prove my poitn a bit ... ;-)
|