VPN group authentication Vulnerability
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-15-2004 02:47 PM - edited 02-21-2020 10:10 AM
Currently we are using groups and group password for our VPN auth. With the new vulnerablity is there an alternative auth the we can use. Looks like certificates are vulnerable too is this correct?
- Labels:
-
Other NAC
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-03-2004 06:31 AM
The work around available in the document is,
No workarounds exist for the vulnerabilities documented in this Notice.
To avoid the potential exploitation because of these vulnerabilities Cisco PSIRT recommends customer deploy Public Key Infrastructure (PKI) and carefully evaluate the risks of deploying Group Password based authentication schemes.
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_security_notice09186a0080215981.html
