If you want to configure rules for Saas services on the PaloAlto Firewall, you can do this using the App ID for the particular service, or you can use the IP addresses, Domains or URLs of the service in the policy. However, since Saas services typically do not use only…
Microsoft has released KB5003646 on the 6th of June 2021. Part of this update is a security hardening measurement to align with recommendations as a conclusion out of CVE-2021-31958. As a known issue of this KB5003646, microsoft has noted in the release notes: “After installing this or later updates, apps…
Let’s mention the important things first: Please patch you vulnerable Exchange 2013, 2016 and 2019 immediately! The page msxfaq has published an infosite to this vulnerability including the instructions how to fix your Exchange. Some security researchers have demonstrated three high risk vulnerabilities for exchange server systems. Microsoft has published…
Let’s mention the important things first: Please patch you vulnerable Exchange 2013, 2016 and 2019 immediately! The page msxfaq has published an infosite to this vulnerability including the instructions how to fix your Exchange. Even though we, as Boll Engineering AG, are not associated in any way with the affected…
With the possibility to include external lists from third parties via the feature “External Dynamic List EDL”, this opens up many possibilities to restrict your own security policies even better and to prevent access to the TOR network. In the following tutorial I will show you how to configure the…
Since a while, the most recent macOS versions the system do report the use of “legacy system extensions” which is often triggered by modules or plugins of low-level software like VPN Clients, AV software etc.
Here you will find the most important support links of our vendors regarding Home-/Remote-Office, Dialup VPNs and MultiFactor Authentication:
Hier finden Sie Informationen zu der OpenSSL Schwachstelle und Herstellerinformationen. “Offizielle” Webseiten http://heartbleed.com/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160 Testseiten http://filippo.io/Heartbleed/ https://www.ssllabs.com Betroffene OpenSSL Versionen OpenSSL 1.0.1 through 1.0.1f (inclusive) are vulnerable OpenSSL 1.0.1g is NOT vulnerable OpenSSL 1.0.0 branch is NOT vulnerable OpenSSL 0.9.8 branch is NOT vulnerable
Und schon wieder gibt es Zuwachs in unserem Eval-Stock. Neben der FG-3140B gesellen sich nun auch zwei grosse PaloAlto Network PA-5050 für Evaluationszwecke mit Gigabit-Anforderungen. Die Geräte sind speziell entwickelt worden, um Netzwerke von Data Center, Large Enterprises oder Service Provider abzusichern, ohne dabei Einbussen im Datendurchsatz in Kauf nehmen…
Sind Sie interessiert, den BOLL Blog als RSS Feed zu abonnieren?