Your SlideShare is downloading. ×
  • Like
Barracuda Networks SSH Vulnerability
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×

Now you can save presentations on your phone or tablet

Available for both IPhone and Android

Text the download link to your phone

Standard text messaging rates apply

Barracuda Networks SSH Vulnerability

  • 424 views
Published


Join our webinar on email and DLP:


https://www.brighttalk.com/webcast/7455/64955


If you need help with this exploit and
resoliving it for your network, contact us at:
http://www.gti1.com/about-us/contact-us/

Published in Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
424
On SlideShare
0
From Embeds
0
Number of Embeds
2

Actions

Shares
Downloads
2
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide
  • Email is the #1 channel for lost data in the enterprise, and the most widely used! Email is essential to every aspect of business. It is a constant balancing act for security professionals to 1) make email usable and 2) make email secure.With the rise of regulations in almost every industry, each business has to resolve the challenge of securing email effectively and affordably. This webinar will go through Email Data Loss Prevention strategies that are you can implement today without slowing down your network or adding to your management overhead.Lets Talk - AgendaWhat is DLP?Why Do You Need DLP?Regulations You FaceCase Study: IronPort and DLPHow To Evaluate DLPWhy Galaxy TechnologiesNext Steps

Transcript

  • 1. SSH ExploitCritical SSH Exploit in BarracudaAppliances, and What You Can Do To Fix It.
  • 2. • Barracuda Spam and Virus Firewall• Barracuda Web Filter• Barracuda Message Archiver• Barracuda Web Application Firewall• Barracuda Link Balancer• Barracuda Load Balancer• Barracuda SSL VPN• ALL VERSIONSSystems Effected
  • 3. • Eight default accounts exist• Used for diagnose by Barracuda on an appliance• They cannot be disabled• Passwords cannot be changedIssue
  • 4. • Account passwords can be broken with dictionary attack• The product account can used to create new users with administrative privileges• Root access can be obtainedExploits
  • 5. • Barracuda currently working on patch• Until then, make sure to load security definition 2.0.5 (It’s possible the root account could still be cracked)• Prevents unauthorized users from SSH to applianceFix
  • 6. • We can help get you up to date• Visit us athttp://www.gti1.com/about-us/contact-us/• Join our upcoming webinar (URL below) to see how we can help with DLP / EmailNeed Help?