Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Ingate Firewall: Removed PPTP tunnels not deactivated

from [Per Cederqvist] Network Security [Permanent Link]
Subject: Ingate Firewall: Removed PPTP tunnels not deactivated
Date: Thu, 27 Jan 2005 11:40:38 +0100 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Product: Ingate Firewall
Versions: 4.1.3 and earlier
Tracking ID: 1826

Summary
=======

Active PPTP tunnels in Ingate Firewall are not deactivated when a
PPTP user is disabled.

If a user has an active PPTP connection to an Ingate Firewall, and
that user is disabled on the Firewall, the active PPTP connection is
not disconnected, but lives on unharmed. Only when the user
disconnects does the block take effect; the next time he tries to
connect, he is not allowed to set up a connection.

Impact
======

If a user is being disabled by the firewall administrator while he has
an active tunnel, that tunnel can live on. He can thus have access to
the resources protected by the firewall for a long time after he was
disabled.

Workaround
==========

When you disable a PPTP user, also turn off the PPTP server and apply
the configuration. This will tear down all PPTP connections. Then
enable the PPTP server and apply the configuration again.

Solution
========

Ingate will provide a fix for this problem in a future upgrade. No
release date has been set yet.

Thanks
======

Thanks to Neil Watson at Voicegenie who reported this problem.

Further updates on this issue will be sent to our mailing list
http://lists.ingate.com/mailman/listinfo/productinfo

Further questions regarding this issue can be directed to
support@ingate.com.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD4DBQFB+MEUTl5zjNKUYI4RAvmoAJjVt7scBKr8dJGiPpb8feXsn8UfAJ91i/SP
NHd+u6v51uZCbKSgy/22pQ==
=eF2N
-----END PGP SIGNATURE-----
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Ingate Firewall: Removed PPTP tunnels not deactivated, Per Cederqvist <=
Previous by Date:  [Contact] Motorola broadband appliance team?, William A. Rowe, Jr.
Next by Date:  [SIG^2 G-TEC] Magic Winmail Server v4.0 Multiple Vulnerabilities, chewkeong
Previous by Thread:  [Contact] Motorola broadband appliance team?, William A. Rowe, Jr.
Next by Thread:  [SIG^2 G-TEC] Magic Winmail Server v4.0 Multiple Vulnerabilities, chewkeong
Indexes:  [Date] [Thread] [Top] [All Lists]