https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71068#M40665 <P>What are the chances PA will be next with backdoor revealed? <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P> <P>&nbsp;</P> Mon, 18 Jan 2016 07:20:33 GMT santonic 2016-01-18T07:20:33Z https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71068#M40665 <P>What are the chances PA will be next with backdoor revealed? <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P> <P>&nbsp;</P> Mon, 18 Jan 2016 07:20:33 GMT https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71068#M40665 santonic 2016-01-18T07:20:33Z https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71069#M40666 <P>my money is on 'no chance' <span class="lia-unicode-emoji" title=":winking_face:">😉</span></P> <P>&nbsp;</P> <P>although this is a good time for a reminder that good security starts at the administrator: make sure management interface is unreachable from unauthorized networks, use strong passwords, change passwords regularly, perform thorough accounting of administrative access, educate users, ... <span class="lia-unicode-emoji" title=":winking_face:">😉</span></P> <P>&nbsp;</P> <P>Tom</P> Mon, 18 Jan 2016 07:35:23 GMT https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71069#M40666 reaper 2016-01-18T07:35:23Z https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71125#M40693 <P>so there is no hard-coded root account or backdoor in the system?&nbsp;</P> Mon, 18 Jan 2016 16:21:29 GMT https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71125#M40693 rbista 2016-01-18T16:21:29Z https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71158#M40704 <P>Still waiting for some official response <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span> Or emergency patch <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P> Tue, 19 Jan 2016 07:17:22 GMT https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71158#M40704 santonic 2016-01-19T07:17:22Z https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71168#M40708 <P>If you really do want an official reply your best path is to contact your sales engineer. &nbsp;Palo Alto in general is very careful about their public statements. &nbsp;But are much more open in private conversations with customers, especially if your company has agreed to the NDA.</P> Tue, 19 Jan 2016 11:45:06 GMT https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/71168#M40708 pulukas 2016-01-19T11:45:06Z https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/72537#M41120 <P>rbista... there are some hidden accounts. If you run a firewall on specific software version (sorry I can't remember which one but you can check the release notes for the fix to determine it) you can run the command 'show admins all' and it will display hidden admins accounts. My understanding is that these are specific accounts designed for certain processes to use though, that is why they are kept hidden.</P> <P>&nbsp;</P> <P>Ben</P> Wed, 10 Feb 2016 10:37:19 GMT https://live.paloaltonetworks.com/t5/general-topics/after-juniper-and-fortinet/m-p/72537#M41120 bmorris1 2016-02-10T10:37:19Z