After Juniper and Fortinet...

Reply
L5 Sessionator

After Juniper and Fortinet...

What are the chances PA will be next with backdoor revealed? :)

 

L7 Applicator

my money is on 'no chance' ;)

 

although this is a good time for a reminder that good security starts at the administrator: make sure management interface is unreachable from unauthorized networks, use strong passwords, change passwords regularly, perform thorough accounting of administrative access, educate users, ... ;)

 

Tom

Tom Piens - PANgurus.com
Like my answer? check out my book! amazon.com/dp/1789956374
L3 Networker

so there is no hard-coded root account or backdoor in the system? 

L5 Sessionator

Still waiting for some official response :) Or emergency patch :)

L7 Applicator

If you really do want an official reply your best path is to contact your sales engineer.  Palo Alto in general is very careful about their public statements.  But are much more open in private conversations with customers, especially if your company has agreed to the NDA.

Steve Puluka BSEET - IP Architect - DQE Communications (Metro Ethernet/ISP)
ACE PanOS 6; ACE PanOS 7; ASE 3.0; PSE 7.0 Foundations & Associate in Platform; Cyber Security; Data Center
L4 Transporter

rbista... there are some hidden accounts. If you run a firewall on specific software version (sorry I can't remember which one but you can check the release notes for the fix to determine it) you can run the command 'show admins all' and it will display hidden admins accounts. My understanding is that these are specific accounts designed for certain processes to use though, that is why they are kept hidden.

 

Ben

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!