This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About jmurphy
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About jmurphy
08-11-2022
16Posts
2Likes
0Solutions
Aug 11, 2022Last Visited
User
Activity
User
Profile
Latest posts by jmurphy
| Subject | Views | Posted |
|---|---|---|
| 923 | 04-21-2022 06:47 AM | |
| 2703 | 09-07-2021 10:32 AM | |
| 1527 | 07-22-2021 08:09 AM | |
| 884 | 07-22-2021 08:02 AM | |
| 966 | 07-20-2021 01:32 PM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 09-07-2021 10:32 AM | |
| 1 Like | 12-09-2020 12:34 PM |
User Badges
Community Statistics
| Member Since | 01-25-2013 07:52 AM |
| Date Last Visited | 08-11-2022 12:50 PM |
| Posts | 16 |
| Total Likes Received | 2 |
04-21-2022
06:47 AM
Since upgrading to 10.0.10, we've been getting system medium severity messages on our active firewalls that "LDAP auth server xxxx.xxx.xxx is up !!!". We never receive a down message though. We're not experiencing any issues with LDAP which makes me think this is a bug false alert. Is anyone else experiencing this?
... View more
09-07-2021
10:32 AM
1 Kudo
Has anyone scanned their GlobalProtect Portals/Gateways with a Qualys WAS scanner? With GP running version 10.0.x, it's reporting back QID 150307 External Service interaction via Host Header Injection. The scanner injects a special FQDN in the Host header and X-Forwarded-Host header. Qualys Periscope is used to detect any subsequent DNS request and identify the presence of the vulnerability. Impact Attackers can potentially redirect users to unintended servers under the attacker's control. Other possible consequences include altered control flow, arbitrary control of a resource, arbitrary code execution. XSS, access to internal hosts, web cache poisoning, or HTML injection. Solution
... View more
07-22-2021
08:09 AM
Called the main TAC number a few days ago. Was on hold for nearly 2 hours...gave up and hung up! Never even got to a person!
... View more
07-22-2021
08:02 AM
Appears to be a problem with the user-id agent and UPN format. If I add the sAMAccountName and UPN format for an account to the ignore_user_list, it gets ignored. We didn't have to have the UPN prior to the 10.0.x user-id agents. We also have some domain\account* entries... I tried account*@domain.com but that doesn't seem to work. So I've updated my TAC case to see if they can assist. Not sure if this is a bug or configuration issue, though there's very limited config options for the UID agents. Just posting in case someone else has this issue also!
... View more
07-20-2021
01:32 PM
Since upgrading to pan os 10.0.6, we've noticed the "ignore_user_list" on our server user-id agents doesn't seem to be working. We did not have any issues prior to upgrading to 10.0.x. Has anyone else noticed this issue? We upgraded our user-id agent to 10.0.3-10 (latest version) at the same time. We have a support ticket open, but have yet to find a solution.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
08-11-2022
12:50 PM
|
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks