WatchGuard Firewall Clientless SSO sends out its password hashes to random devices on the network.

projectblack.io

cross-posted to:
cybersecurity@lemmy.capebreton.social
secops@lemmy.world

WatchGuard Firewall Clientless SSO sends out its password hashes to random devices on the network.

projectblack.io

repostbot33@lemmy.worldB to

netsec@lemmy.worldEnglish · 2 years ago

cross-posted to:
cybersecurity@lemmy.capebreton.social
secops@lemmy.world

Turn OFF This WatchGuard Feature - GuardLapse

projectblack.io

Picture this: a feature from a security appliance that willingly dispatches its password hashes to any device on the network. That is precisely what WatchGuard's SSO does under certain circumstances. Does a bad feature warrant filing a CVE? I'm not sure.

You must log in or register to comment.

Chat