RE: pen test VPN

From: DABDELMO@bouyguestelecom.fr
Date: 02/25/02 

From: DABDELMO@bouyguestelecom.fr
To: crbyme@writeme.com, pen-test@securityfocus.com
Date: Mon, 25 Feb 2002 15:55:19 +0100

It perfectly makes sense to pen-test VPN access. Traffic may eventually be
encrypted, and then confidential datas going over untrusted network could
not be sniffed. But beyond that a VPN gateway is often a direct entry point
to the internal network. Starting from here, all of your security relies on
the the authentication used by the VPN gateway. If this one is not good
enough, you might be in trouble. This is where the VPN pen-testing come. As
for tools I don't really know any specific one. To me the steps for
pen-testing would be quite classical, identifying the type of VPN that can
be done with gateway (ie IKE/IPSec, PPTP, L2TP/IPSec...), finding what is
exactly the type of the VPN gateway, then do specific vulnerability research
on this gateway type, and start with the associated VPN client. Indeed
various things can be done as a start depending of the solution, for example
with Checkpoint VPN-1, you should be able to get the topology file...
BR

David

> -----Message d'origine-----
> De: Carl Bysen [SMTP:crbyme@writeme.com]
> Date: samedi 23 février 2002 17:25
> À: pen-test@securityfocus.com
> Objet: pen test VPN
>
> Hi,
>
> what can be done to pen test a VPN setup? Which tools are available,
> additionally does it make sense to pen-test a VPN setup (traffic is
> encrypted)?
>
>
> Regards,
> --egonle
> --
>
> _______________________________________________
>
> Sign-up for your own FREE Personalized E-mail at Mail.com
>
> http://www.mail.com/?sr=signup
>
>
>
>
>
> 1 cent a minute calls anywhere in the U.S.!
>
>
>
> http://www.getpennytalk.com/cgi-bin/adforward.cgi?p_key=RG9853KJ&url=http:
> //www.getpennytalk.com
>
>
>
>
>
> --------------------------------------------------------------------------
> --
> This list is provided by the SecurityFocus Security Intelligence Alert
> (SIA)
> Service. For more information on SecurityFocus' SIA service which
> automatically alerts you to the latest security vulnerabilities please
> see:
> https://alerts.securityfocus.com/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Relevant Pages

  • Re: [Full-disclosure] Remote Desktop Command Fixation Attacks
    ... This set of steps is redundant in many places, and it's also enormously expensive, since you're using no less than three different expensive bits of networking hardware (AP, PIX, VPN Concentrator), in addition to a bunch of x86 server hardware, windows server licenses, and at least one ISA license. ... Your computers necessarily don't have full access to your network infrastructure when they aren't logged on, so GPOs, software updates, etc can't be applied at the times you want them to be applied. ... Turning on, enabling, and implementing every possible security setting and device you think of is not defence in depth, and will probably only have two effects - your users won't use your wireless network, and you'll burn so much cash you won't have any left to spend on *useful* security measures. ...
    (Full-Disclosure)
  • Re: Firewall advice required please
    ... 2./ How do you provide "SECURE" access without a VPN? ... suggesting you are achieving as-good-as security using a standard SSL, ... > and air-gap is the only product we carry. ... > no other firewall can touch. ...
    (comp.security.firewalls)
  • RE: Re: Secure Intranet?
    ... need to have a minimum level of security that is in line with your policies. ... Sygate has a product that does security policy enforcement for VPN called ... Sygate Secure Enterprise. ... Sygate Secure Enterprise Data Sheet ...
    (Security-Basics)
  • RE: VPNs - Firewalls and Security
    ... we turned off sysopt connection permit ipsec and then added the ... VPN connections. ... VPN's - Firewall's and Security ... You had configured that vpn users access internal network, ...
    (Security-Basics)
  • [NEWS] Cisco IPsec VPN Implementation Group Password Usage Vulnerability
    ... Get your security news from a reliable source. ... by Cisco PSIRT regarding the Cisco IPSec VPN implementation, ... * Recovering the Group Password - The Group Password used by the Cisco ... Internet Protocol Security virtual private network (VPN) client is ...
    (Securiteam)