CVE-2021-26855 CVE-2021-26857 CVE-2021-26858 CVE-2021-27065 …are wreaking havoc right now. Are your Exchange servers being hit? Here is a quick SmartLog query using the Hafnium overview from SentinelOne’s blog: 103.77.192.219 or 104.140.114.110 or 104.250.191.110 or 108.61.246.56 or 149.28.14.163 or 157.230.221.198 or
CCSA and CCSE Classes
Am renewing my CCSA and CCSE for the umptienth time since 1999. I had a CCSA class in the end of July that was abysmal. The training company was so bad that I need to do a writeup so that
Bad IPS Signature: OpenSSL Padding Oracle
The Check Point “OpenSSL Padding Oracle…” IPS signature is blocking ALL SSL traffic in some environments: I have seen the signature first-hand in production on R80.20 gateways and it shuts down all SSL traffic including the SSL VPN portal (Mobility
usercenter.checkpoint.com is down
Seeing this in multiple customer environments. Making everything turn red in SmartConsole. Another symptom that seems related is not being able to hit the following link from a gateway or management server: curl_cli -v –cacert $CPDIR/conf/ca-bundle.crt https://usercenter.checkpoint.com/usercenter/services/BladesManagerService Hopefully this gets
Checkpoint.com uses WordPress?
CheckPoint’s site was down today: and returning this error: WordPress is a somewhat complex CMS to secure. As a CMS it is estimated to have 60%+ of the market-share, and uses PHP and MySQL/MariaDB. There are tons of plug-ins, including
One Link…
Imagine the possibilities if someone p0wned this link…
R80.40 is GA
If you were at CPX New Orleans, then you saw the announcement. R80.40 Portal. R80.40 release notes. R80.40-specific Documentation. Dorit touched briefly on some of the new enhancements at CPX.
Fun With R80.10
Did some sub work for a “three star” partner that does not have any Check Point certified engineers on staff (ahem). Anyways, nothing like making 40+ changes in SmartConsole and seeing this: After a few more crashes I then got
R80.40 EA is Public
R80.40 EA went live a few days ago. There are tons of new features including a new Kernel: TL:DR What’s New IoT Security A new IoT security controller to: Collect IoT devices and traffic attributes from certified IoT discovery engines
R80.20 SmartConsole Update 081
R80.20 SmartConsole Build 081 was released today. It is always a good idea to run the latest SmartConsole (Jumbo Fixes not necessarily, but SmartConsole updates tend to bring stability).