undefined | Better HN

0 pointsxchaotic4y ago0 comments

I don’t get the scenario he tested where he has access to both sides and can freely install cyphers on the server and what not. If you have just installed vpn endpoint and send whatever packets you feel like.

0 comments

largbae4y ago

I think the point is that the perimeter security doesn't provide the security that the client imagined. Gaining root on any endpoint in the network (and then finding an endpoint you can control anywhere else on the internet) gives you a way in and out of the company network.

anderspitman4y ago

You don't even need root. All the important bits can be done in userspace.

j / k navigate · click thread line to collapse

0 pointsxchaotic4y ago0 comments

0 comments

largbae4y ago

anderspitman4y ago

You don't even need root. All the important bits can be done in userspace.

j / k navigate · click thread line to collapse