Messages

I'm currently working on my MS in Cybersecurity which I'll have completed by April 2020.  Only two classes left but only taking one class a year so work foots the bill .  I plan on getting my CISSP by the middle of this year.

This has to be based off of a real experience

When I was in the Army we were sent to Egypt for some training.  When the training was done we got to go see the pyramids in Cairo.  At the pyramids there were some camel jockeys who were  giving free camel rides.  The only catch was you had to pay to be let off the camel.  One guy was with us and he decided to have fun with what they were doing.  He hopped up on one of the camels and rode it around for a few minutes.  The camel jockey then said "ok, you give us something and we let you off."  He flipped it on them and was like "you give me something and then I will get off."  You could tell they were surprised by his response and they went back and forth for a few minutes.  The camel jockey finally gave in and let him off the camel for free.

[continue]

Thanks - as if I didn't already have enough to do   Here's some additional information -

The URL Filtering 'continue page' and 'admin override page' does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the Palo Alto PAN-OS interface and will run in the security context of that site. As a result, the code will be able to access the target user's cookies (including authentication cookies), if any, associated with the site, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.

A remote user can access the target user's cookies (including authentication cookies), if any, associated with the Palo Alto PAN-OS interface, access data recently submitted by the target user via web form to the interface, or take actions on the interface acting as the target user.
https://securitytracker.com/id/1041207


Looks like this is only an issue if you use URL Filtering continue or overide.  Unfortunately we do have both of thee applied for a few of the URL Filtering categories.

Nice write up - thanks for sharing!

A few years back we upgraded  a pair of Palo Alto firewalls and after the upgrade it started to drop voice traffic.  The upgrade was done off hours so we did not find out about the issue until the morning.  Turned out to be a bug in the version we upgraded to and had to drop back another version in the middle of the day.  Lots of unhappy people.  So I now place both inbound, outbound, and internal calls after every upgrade.  Slim chance it will happen again but its on my list.

I always hated to hear "We'll accept the risk" as a manager signed off...

This guy has a great sense of humor and his videos are generally on-point:
https://www.youtube.com/watch?v=9IG3zqvUqJY&t=3s

Time to get the upgrade... and upgrade!

Or migrate to a new vendor 

TIL how to configure SSO on F5 APM for external users

Thanks Dean!

Thanks for the link!!  I've never been a big e-book reader but this is a pretty good deal.  What is the best format to download these in?  I'm guessing PDF?

Congrats on the new job!!

Working on adding a Palo Alto 500 or 3020 to all remote sites as their layer 3.

Coming up - rolling out Riverbed's SD-WAN solution at all remote sites.

I think this is the way other vendors currently handle the re-cert of their certifications.  I believe for a CISSP / CISA / CEH to re-cert they only need to complete a certain amount of learning credits in a certain time period.  I think this is a good move for Cisco to be making as far as their certifications go.

We started doing this on our retail routers.  Oddly enough the command does not work when adding static routes for DHCP.  No problem with static or PPPoE routes.  I agree that it is helpful.

I was looking over one job req yesterday that described the company as having "a warrior culture".

So in this "warrior culture"... if a developer is being stupid can I correct him with a shiv made out of a old switch mounting bracket?  Could be a good thing.