[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Need a little help.



i havent heard of anything else

i know a dude who is citrix certified, i will try and ask him later tonight

Casey


>From: fiaid@quasi-sane.com
>Reply-To: silug-discuss@silug.org
>To: silug-discuss@silug.org
>Subject: Need a little help.
>Date: Tue, 1 Jul 2003 09:55:39 -0500 (CDT)
>MIME-Version: 1.0
>Received: from web1.lanscape.net ([64.240.156.194]) by 
>mc8-f5.law1.hotmail.com with Microsoft SMTPSVC(5.0.2195.5600); Tue, 1 Jul 
>2003 08:08:00 -0700
>Received: from silug.org (localhost [127.0.0.1])by web1.lanscape.net 
>(8.11.6/8.11.6) with ESMTP id h61F7u925262;Tue, 1 Jul 2003 10:07:56 -0500
>Received: from n00bz.net (n00bz.net [64.240.156.248])by web1.lanscape.net 
>(8.11.6/8.11.6) with ESMTP id h61Etf924917for <silug-discuss@silug.org>; 
>Tue, 1 Jul 2003 09:55:41 -0500
>Received: from localhost (fiaid@localhost)by n00bz.net (8.11.6/8.11.6) with 
>ESMTP id h61EteM01380for <silug-discuss@silug.org>; Tue, 1 Jul 2003 
>09:55:40 -0500
>X-Message-Info: UZmYcfFpTCewzfqvyl1d15R59mlxBfYY
>X-X-Sender: fiaid@n00bz.net
>Message-ID: <Pine.LNX.4.44.0307010951010.1378-100000@n00bz.net>
>Organization: Southern Illinois Linux Users Group
>Precedence: bulk
>Sender: silug-discuss-owner@silug.org
>Return-Path: silug-discuss-owner+M5415@silug.org
>X-OriginalArrivalTime: 01 Jul 2003 15:08:00.0978 (UTC) 
>FILETIME=[90218320:01C33FE2]
>
>Hello all,
>	Is anyone aware of any glaring vulnerabilities within Citrix,
>other than the ability to scan the published apps and the fact that if you
>aren't using ssl you can be nailed with man in the middle.  The powers
>that be are trying to figure out things to do for remote access and
>someone is pushing this forward.  I personally find the idea completely
>and utterly fruitless, but apparently "alot of other companies are doing
>this without problems!" so now I am looking into it.  I plan on going
>NFuse/SSL/SecurID for the machine out in my dmz.  But, if there is
>anything that could be a show stopper, PLEASE tell me.  I am googling like
>a monkey right now trying to find things, not sure why they didn't have
>the security guy do this but oh well.
>
>Tighe
>
>ps.  Vulnerabilities without working exploits are ok too, jsut the fact
>that the vuln is there is enough for me.  Remember, just because you
>haven't seen the exploit doesn't mean it isn't there.
>
>--
>Tighe Schlottog         workape         fiaid
>"Nothing is too cruel if it is funny enough."
>
>
>-
>To unsubscribe, send email to majordomo@silug.org with
>"unsubscribe silug-discuss" in the body.

_________________________________________________________________
Add photos to your e-mail with MSN 8. Get 2 months FREE*.  
http://join.msn.com/?page=features/featuredemail


-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.