|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] SecRemote: topology download!
if you use FWZ encryption, they are in clear text. Use IKE encryption scheme instead, the topology download will be encrypted. -----Original Message----- From: Hartmann, Josef [mailto:[email protected]] Sent: Thursday, February 01, 2001 11:42 AM To: [email protected] Subject: RE: [FW1] SecRemote: topology download! is there a way to change this setting? > -----Original Message----- > From: iden fw [SMTP:[email protected]] > Sent: Thursday, February 01, 2001 4:05 PM > To: [email protected]; [email protected] > Subject: Re: [FW1] SecRemote: topology download! > > By default, Checkpoint enables cleartext topology downloads. I have asked > them repeatedly for about 3 years to change this (and a couple of other) > default settings. > > > > >From: Christoph Nagelreiter > >To: "Secure 1 Mailing List (E-Mail)" > >Subject: [FW1] SecRemote: topology download! > >Date: Thu, 1 Feb 2001 15:07:45 +0100 > > > > > >Hi, > > > >My SecRemote (SP-2 DES) client works great, but: > > > >The download of the topology is no problem. I used a sniffer (TCP port > 264) > >to examine the topology download from our FW-1 over the Internet to my> >client. > >In the sniffer´s log file i found the whole topology in !!plaintext!!> > > >I don´t think that is okay, or? > >Do i have to use another encryption scheme? > >Can anyone who is maybe in the same "network area" as my client and he > knows > >the Checkpoint software, listen to TCP port 264? ( He can get the FW-1 IP > > >Address and more) > > > >Thank you. > > > >ChrisN > > > > > > > >========================================================================= > ======= > > To unsubscribe from this mailing list, please see the instructions at> > http://www.checkpoint.com/services/mailing.html > >========================================================================= > ======= > > _____ > > Get your FREE download of MSN Explorer at <http://explorer.msn.com> > > > ========================================================================== > ====== To unsubscribe from this mailing list, please see the instructions > at http://www.checkpoint.com/services/mailing.html > ========================================================================== > ====== ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== __________________________________________________________ I N T E R N E T M A I L This mail message originated outside Commerzbank via the Internet. As a result, the sender's address is not verifiable. __________________________________________________________ __________________________________________________________ L E G A L D I S C L A I M E R: This communication is confidential and is intended only for the person to whom it is addressed. If you are not that person you are not permitted to make use of the information and you are requested to notify immediately Commerzbank Aktiengesellschaft, New York Branch, that you have received it and then to destroy the copy in your possession. Views expressed in this e-mail do not necessarily reflect the views of Commerzbank AG __________________________________________________________ ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
