Re: [Full-disclosure] Sonicwall license servers down .. all customers affected
> https://licensemanager.sonicwall.com/newui/admin/admin.jsp > > thats hilarious - it MUST be a kind of honeypot :P > I think they threw up a new licensemanager server without reviewing the config .. it allows directory enumeration on a lot of pages (including the root). This one is interesting : https://licensemanager.sonicwall.com/js/ClientValidationMethods.js Seems remote debug is on as well : https://licensemanager.sonicwall.com/mf/fwregister_done.jsp Cheers, Michael Holstein CISSP GCIA Cleveland State University ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Sonicwall license servers down .. all customers affected
https://licensemanager.sonicwall.com/newui/admin/admin.jsp thats hilarious - it MUST be a kind of honeypot :P 2008/12/3 Rob Thompson <[EMAIL PROTECTED]>: > IT Security wrote: >> DRM schemes like this only cause problems for the LEGITIMATE customers . > > And to think that you paid a very good amount of money for that level of > service. > > We all know that there is no level of DRM that can protect anything. > Where there is a will, there is a way. Your statement of affecting only > legitimate customers is dead on the money. > > Time to start voting with dollars and holding companies accountable. > This state of eating whatever they spoon feed to us needs to end. We > all allowed this to happen. > >> >> >> >> >> ___ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ > > > -- > Rob > > +-=-=-=-=-=-=-=-=-=-=-=-=-=-=-+ > | _ | > | ASCII ribbon campaign ( ) | > | - against HTML email X | > |/ \ | > | | > +-=-=-=-=-=-=-=-=-=-=-=-=-=-=-+ > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Sonicwall license servers down .. all customers affected
IT Security wrote: > DRM schemes like this only cause problems for the LEGITIMATE customers . And to think that you paid a very good amount of money for that level of service. We all know that there is no level of DRM that can protect anything. Where there is a will, there is a way. Your statement of affecting only legitimate customers is dead on the money. Time to start voting with dollars and holding companies accountable. This state of eating whatever they spoon feed to us needs to end. We all allowed this to happen. > > > > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -- Rob +-=-=-=-=-=-=-=-=-=-=-=-=-=-=-+ | _ | | ASCII ribbon campaign ( ) | | - against HTML email X | |/ \ | | | +-=-=-=-=-=-=-=-=-=-=-=-=-=-=-+ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Sonicwall license servers down .. all customers affected
I am sure Sonic wall is going to lose many customers and other companies should learn and not put DRM in their products. I hope this will teach them. On Tue, Dec 2, 2008 at 9:36 PM, Elazar Broad <[EMAIL PROTECTED]> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > I stopped using SonicWall when I learned I had to purchase a whole > new device for a customer that just wanted to add a few more > machines to their network, instead of bumping the license like most > "normal" vendors. > > On Tue, 02 Dec 2008 14:14:43 -0500 IT Security > <[EMAIL PROTECTED]> wrote: > >Sonicwall (makers of various security products) has had their > >license > >manager (server) go haywire overnight and it's "reset" (meaning > >invalidated) > >the licenses on all of their email security products. This means > >customers > >can't login to their own systems (a good case against draconian > >DRM like > >this). Calls to support have gone straight to voicemail all > >morning, and no > >ETA for resolution yet exists. > > > >This is affecting **all** of their customers, as far as I can tell > >(and > >based on what I'm told by their general support ticket-taker). > > > >Their forum (probably requires registration) is full of complaints > >about it. > >Screenshots of it and other problem areas are available on request > >.. but I > >don't want to email them to this entire list). > > > >The first alert was these warnings : > > > > > >~~ SonicWALL Email Security Alert (6.2.2.1071) ~~ > > > > > >[Summary: Your Email Security licenses have been reset.] > > > >Details: > >Host Name: **ourmailhost** > >Description: The Email Security licenses have been reset at > >12/02/2008 04:18 EST. The email filtering will not be > >working. > > > >TimeStamp: > >LocalTime: Tue Dec 2 04:18:49 2008 > >GMT: Tue Dec 2 09:18:49 2008 > > > >Additional Information: > >Recommended Action: Please contact SonicWall Technical > >Support. > > > >A response from their technical support on the issue went like > >this : > > > >"The issue is on our backend server who stores the registrations, > >some ES > >appliances got licences resetted. The exact cause is still being > >analized > >with high priority. In those cases entering the mysonicwall > >credentials or > >uploading file solve the issue. Kind Regards Ivan" > > > >And as of now, their license server is **still** off-line : > > > >$ telnet licensemanager.sonicwall.com 443 > >Trying 204.212.170.143... > >telnet: Unable to connect to remote host: Connection refused > > > >DRM schemes like this only cause problems for the LEGITIMATE > >customers . > -BEGIN PGP SIGNATURE- > Charset: UTF8 > Version: Hush 3.0 > Note: This signature can be verified at https://www.hushtools.com/verify > > wpwEAQECAAYFAkk1jiwACgkQi04xwClgpZidpwP9EGnoiLpcTxqCI8uZn6IPZ5xNfSXs > mFJBuV7+4DimJdh1Wr6XdevITM3XTvb56SqoLuKYXJTatlt5pExV16PqpCbNFTIGJl/x > TjqFF2//M1GE0+02mfSpVFBTXAsji6chEWSM7KSk+4h/BGIpppc1bLC45JEscgrEWp4N > OBvxfp8= > =zRVw > -END PGP SIGNATURE- > > -- > Paying too much for your business phone system? Click here to compare > systems from top companies. > > http://tagline.hushmail.com/fc/PnY6qxu9tWrxyM1PdHDmXgMv34TDO7Gvn9NbAdfSuL24iBSp0vlKw/ > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- http://www.astorandblack.com/ http://www.jewelerslounge.com/liberty-coin-cufflinks ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Sonicwall license servers down .. all customers affected
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I stopped using SonicWall when I learned I had to purchase a whole new device for a customer that just wanted to add a few more machines to their network, instead of bumping the license like most "normal" vendors. On Tue, 02 Dec 2008 14:14:43 -0500 IT Security <[EMAIL PROTECTED]> wrote: >Sonicwall (makers of various security products) has had their >license >manager (server) go haywire overnight and it's "reset" (meaning >invalidated) >the licenses on all of their email security products. This means >customers >can't login to their own systems (a good case against draconian >DRM like >this). Calls to support have gone straight to voicemail all >morning, and no >ETA for resolution yet exists. > >This is affecting **all** of their customers, as far as I can tell >(and >based on what I'm told by their general support ticket-taker). > >Their forum (probably requires registration) is full of complaints >about it. >Screenshots of it and other problem areas are available on request >.. but I >don't want to email them to this entire list). > >The first alert was these warnings : > > >~~ SonicWALL Email Security Alert (6.2.2.1071) ~~ > > >[Summary: Your Email Security licenses have been reset.] > >Details: >Host Name: **ourmailhost** >Description: The Email Security licenses have been reset at >12/02/2008 04:18 EST. The email filtering will not be >working. > >TimeStamp: >LocalTime: Tue Dec 2 04:18:49 2008 >GMT: Tue Dec 2 09:18:49 2008 > >Additional Information: >Recommended Action: Please contact SonicWall Technical >Support. > >A response from their technical support on the issue went like >this : > >"The issue is on our backend server who stores the registrations, >some ES >appliances got licences resetted. The exact cause is still being >analized >with high priority. In those cases entering the mysonicwall >credentials or >uploading file solve the issue. Kind Regards Ivan" > >And as of now, their license server is **still** off-line : > >$ telnet licensemanager.sonicwall.com 443 >Trying 204.212.170.143... >telnet: Unable to connect to remote host: Connection refused > >DRM schemes like this only cause problems for the LEGITIMATE >customers . -BEGIN PGP SIGNATURE- Charset: UTF8 Version: Hush 3.0 Note: This signature can be verified at https://www.hushtools.com/verify wpwEAQECAAYFAkk1jiwACgkQi04xwClgpZidpwP9EGnoiLpcTxqCI8uZn6IPZ5xNfSXs mFJBuV7+4DimJdh1Wr6XdevITM3XTvb56SqoLuKYXJTatlt5pExV16PqpCbNFTIGJl/x TjqFF2//M1GE0+02mfSpVFBTXAsji6chEWSM7KSk+4h/BGIpppc1bLC45JEscgrEWp4N OBvxfp8= =zRVw -END PGP SIGNATURE- -- Paying too much for your business phone system? Click here to compare systems from top companies. http://tagline.hushmail.com/fc/PnY6qxu9tWrxyM1PdHDmXgMv34TDO7Gvn9NbAdfSuL24iBSp0vlKw/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Sonicwall license servers down .. all customers affected
Sonicwall (makers of various security products) has had their license manager (server) go haywire overnight and it's "reset" (meaning invalidated) the licenses on all of their email security products. This means customers can't login to their own systems (a good case against draconian DRM like this). Calls to support have gone straight to voicemail all morning, and no ETA for resolution yet exists. This is affecting **all** of their customers, as far as I can tell (and based on what I'm told by their general support ticket-taker). Their forum (probably requires registration) is full of complaints about it. Screenshots of it and other problem areas are available on request .. but I don't want to email them to this entire list). The first alert was these warnings : ~~ SonicWALL Email Security Alert (6.2.2.1071) ~~ [Summary: Your Email Security licenses have been reset.] Details: Host Name: **ourmailhost** Description: The Email Security licenses have been reset at 12/02/2008 04:18 EST. The email filtering will not be working. TimeStamp: LocalTime: Tue Dec 2 04:18:49 2008 GMT: Tue Dec 2 09:18:49 2008 Additional Information: Recommended Action: Please contact SonicWall Technical Support. A response from their technical support on the issue went like this : "The issue is on our backend server who stores the registrations, some ES appliances got licences resetted. The exact cause is still being analized with high priority. In those cases entering the mysonicwall credentials or uploading file solve the issue. Kind Regards Ivan" And as of now, their license server is **still** off-line : $ telnet licensemanager.sonicwall.com 443 Trying 204.212.170.143... telnet: Unable to connect to remote host: Connection refused DRM schemes like this only cause problems for the LEGITIMATE customers . ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/