Firewall vendors in 2024 (feddit.org)

submitted 3 months ago* (last edited 3 months ago) by cron@feddit.org to c/cybersecuritymemes@lemmy.world

10 comments fedilink hide all child comments

Fortinet, Palo, Checkpoint, Cisco, Sonicwall ... is there any big firewall vendor that didn't have any critical vulnerabilities last year?

you are viewing a single comment's thread
view the rest of the comments

[-] M33@lemmy.sdf.org 3 points 3 months ago

Obsolete binaries not updated for years, hardcoded secrets… this is what you get in firewalls like any other piece of black box equipment.

[-] cron@feddit.org 2 points 3 months ago

And every service runs as root. This enables the CRL webserver to download /etc/shadow ...

[-] M33@lemmy.sdf.org 1 points 3 months ago

Or user sessions persist on the filesystem so a glitch on the captive portal’s web server allow you to get clear text username and password for currently connected vpn sessions …

[-] MajorHavoc@programming.dev 2 points 3 months ago

Yep. Closed source is for the software that no one would ever buy if they could read it.

[-] lennivelkant@discuss.tchncs.de 1 points 3 months ago

Security by obscurity may work in delaying exploits, but once someone breaks the obscurity, they have a headstart on exploiting it over those hoping to fix it.

[-] cron@feddit.org 1 points 3 months ago

Security by old software, or how I call it: the ivanti approach

this post was submitted on 04 Jan 2025

10 points (100.0% liked)

Cybersecurity - Memes

2457 readers

1 users here now

Only the hottest memes in Cybersecurity

founded 2 years ago

MODERATORS

Sam1232188@lemmy.world

neurohost@lemmy.world

Sam1232188@lemmy.fmhy.ml

Alphadef@programming.dev

CannaVet@lemmy.world