@torproject Q: I wish there was a similar tool test #Bridges, as https://bridges.torproject.org/scan/ is not that good and I don't want to hammer it with dozens of addresses, cuz at best that's quite antisocial if not possibly trigger responses assuming this is an intelligence gathering operation.

• Ideally sone standalone binary that one can just give a list of #TorBridge|s in a text file (similar to the way one can just past them in at #TorBrowser) would help.

I.e.

bridgetest -v4 obfs4 203.0.113.0:80 …

bridgetest -v6 webtunnel [2001:DB8::1]:443 …

bridgetest -list ./tor.bridges.list.private.tsv 

• But maybe #onionprobe already does that. In that case please tell me to "#RTFM!"…

Similarly there needs to be a more granular way to request #TorBridges from #BridgeDB (as it's basically impossible to get #IPv4 #Webtunnel addresses nor is there an option to filter for #ports like :80 & :443 to deal with restrictive #firewalls (i.e. on public #WiFi)…

• there are flags like ipv6=yes but neither ipv4=yes nor ipv6=no yielded me other resultd than #IPv6 webtunnel bridges…

And before anyone asks: Yes, I do have a "legitimate purpose" as some of my contacts do need Bridges to get beyond a mandatory firewall and/or do use #TorBrowser (through an #SSH tunnel) to circumvent Tor & #VPN blocks and maintain privacy (as many companies do block sometimes entire #Hosters' ASNs due to rampant #scrapers…

Behavioral firewalls are quietly taking over as the digital sentinels of modern cybersecurity architecture. Unlike traditional firewalls that act like bouncers blocking known threats at the gate, behavioral firewalls operate more like surveillance analysts — tracking, interpreting, and...

https://medium.com/@mrsno1special/behavioral-firewalls-and-psychological-profiling-are-we-coding-paranoia-into-cybersecurity-79e5b96c3301

# #behavioral #firewalls #quietly #taking #digital

@adisonverlice I think that's dangerous disinfo as @torproject actively works against attempts to fingerprint and track #Tor users.

• I do consider Tor more private than any #VPN simply becaise they can neither ban users nor identify them.

In fact, Tor has been designed with the explicit goal to circumvent #Firewalls and #InternetCensorship methods like #DeepApcketInspection.

• Which is why #OnionShare by @micahflee works so great!

As a matter of principle I'd never vouch for any #centralized, #SingleVendor and/or #SingleProvider solution of any kind, including #Session.

• Tor is sufficiently decentralized in that it is not only completely #OpenSource but has proven to not have SPOFs in the form of maintainers and is able to yeet proplematic folks (unlike #WikiLeaks!)…

HIRING: Deputy Director, Physical & Cyber Security / San Jose, California
💰 USD 208K+

👉 https://isecjobs.com/J882697/

#Analytics #Audits #CISA #CISM #CISO #CISSP #Clearance #Compliance #Firewalls #Incidentresponse #SanJose #CyberSec #security #VTA

@k4m1 @stman yeah, according to the #RTL8139 #datasheet this is basically a very cheap 10/100M NIC designed #embedded systems and low-end/low-cost desktops, and for a device designed and sold in 2006 it made sense, given back then #Gigabit-#Ethernet and Cat.5 cabling was considered high-end.

• And unlike contemporary / successor chips by #Intel like the famous #i210 (which is still offered as #i219 but mostly succeeded by the #i225 as a 2,5GBase-T version) is way cheaper, which pre-#RoHS - NICs being sold for like € 10 retail & brand-new....

The few issues known only affect like #Virtualization setups, a market this thing was never designed for (most likely also never tested against).

• I'd not he surprised if a lot of cheap #ThinClients and other systems used these NICs because of the simplicity of integration, being a cheap 3,3V single-chip (+auxilliary electronics) solution and propably costling less than 10¢ on a reel of 10.000.

It's the reason why to this day we see #Realtek NICs being shipped instead of fanning-out & enabling #SoC-integrated NICs with a #MAC & #PHY instead: Because the auxilliary parts for those are more expensive than just getting a PCI(e lane) somewhere and plonking it down.

• Maybe there have even been some really cheap, low-end #Routers / #Firewalls aiming at #SoHo customers back in those days, cuz back then 16MBit/s #ADSL2 was considered fast, and Realtek's NICs up until recently only delivered like 60-75% of the max. speed advertised, so by the time someone would notice, that gearvwould've been EoL'd anyway and those who did notice right-away never were the target audience to begin with.

Most modern NICs are more complex and demand more configuration / driver support...

#Hackers are hitting #firewalls and #VPNs to breach #businesses

https://www.techradar.com/pro/security/hackers-are-hitting-firewalls-and-vpns-to-breach-businesses

14.000 #Fortinet- #Firewalls kompromitiert: Angreifer nisten sich ein.

https://www.heise.de/news/14-000-Fortinet-Firewalls-kompromitiert-Angreifer-nisten-sich-ein-10352344.html

🍲 Daemon Soup: The Cybersecurity Tiers of Small Businesses #cybersecurity, #smallbusiness, #digitaldefense, #DaemonSoup, #cybersecuritytiers, #businesssecurity, #passwordprotection, #employeetraining, #multifactorauthentication, #encryption, #penetrationtesting, #firewalls, #antivirus, #cybersecuritystrategy, #dataprotection, #securitybestpractices, #cyberthreats, #ITsecurity, #systemfortification, #cyberresilience, #threatdetection

http://tomsitcafe.com/2025/04/09/%f0%9f%8d%b2-daemon-soup-the-cybersecurity-tiers-of-small-businesses/

Sorry I've been quiet. Double whammy kept me from posting today. Flood loss tax return and OpenWRT firewalls - not sure which one was worse. #death #taxes #firewalls

HIRING: Deputy Director, Physical & Cyber Security / San Jose, California
💰 USD 208K+

👉 https://isecjobs.com/J806992/

#Analytics #Audits #CISA #CISM #CISO #CISSP #Clearance #Compliance #Firewalls #Incidentresponse #VTA

OK I figure I should update this, since I got a reply from Vermont: they weren't blocking #LibreWolf. A bit more searching and it looks like #firewalls don't get along well with OCSP servers (unless otherwise configured), and LibreWolf enforces an OCSP check by default.
I've turned off the setting ("Enforce OCSP hard-fail" under about:preferences#librewolf) and I'll let y'all know if that worked next time I use the campus WiFi.

#PaloAlto #Firewalls Under #Attack As Miscreants Chain Flaws For #Root Access - Slashdot

A recently patched #PaloAltoNetworks #vulnerability (CVE-2025-0108) is being actively #exploited alongside two older flaws (CVE-2024-9474 and CVE-2025-0111), allowing attackers to gain root access to unpatched firewalls.
#firewall #security

https://it.slashdot.org/story/25/02/19/2059256/palo-alto-firewalls-under-attack-as-miscreants-chain-flaws-for-root-access?utm_source=rss1.0mainlinkanon&utm_medium=feed

Une attaque massive par brute force cible les firewalls et les VPN grâce à 2,8 millions d’adresses IP
https://www.it-connect.fr/attaque-massive-brute-force-cible-firewalls-et-vpn-avec-2-8-millions-adresses-ip/

#Infosec #Security #Cybersecurity #CeptBiro #AttaqueMassive #BruteForce #Firewalls #VPN

Joint Publications Focus on Mitigation Strategies for Edge Devices > NSA/Central Security Service

FORT MEADE - The #NSA has joined the Australian Signals Directorate’s Australian Cyber #Security Centre (ASD’s ACSC), the Canadian Centre for Cyber Security (CCCS), & others to release 3 guides #Cybersecurity Info Sheets (CSIs) that highlight critically important mitigation strategies for securing edge device systems, including #firewalls, routers, & #VPN gateways.

https://www.nsa.gov/Press-Room/Press-Releases-Statements/Press-Release-View/Article/4052657/joint-publications-focus-on-mitigation-strategies-for-edge-devices/

I panicked but I never did find out what it was. I learned how to reinstall #Windows and started from scratch. I began to use #anti-virus and #firewalls and I began to learn about computer security so as to avoid getting infected by something again. Then the #spyware fad hit and I used tools like #Ad-Aware to scan my computer and those of friends and loved ones. I think the most spyware/adware I saw was over 1,000 detections on one computer. Then the threat landscape changed again.... 2/4

Since we can analyze all of your firewalls, routers, switches and other network devices simultaneously, we can also ensure that your security posture is consistent everywhere you have a presence!

Read more 👉 https://lttr.ai/AatZ3

#pci #Security #Infosec #Firewalls

Let's hope 2025 will bring back the popularity of #StatefulFirewalls for the mobile space once again.

#infosec #Firewalls #mobile

How do you deal with the problem that a new security product is "sexy" and gets management support, but actually operating, maintaining and doing security rule tightening is "operational" and never gets any management visibility, resources or prioritization?
#firewalls #cybersecurity

Une faille zero-day exploitée dans les firewalls Fortinet
https://www.lemondeinformatique.fr/actualites/lire-une-faille-zero-day-exploitee-dans-les-firewalls-fortinet-95761.html

#Infosec #Security #Cybersecurity #CeptBiro #Faille #ZeroDay #Firewalls #Fortinet

Extraction Agent and Firewall: Software vs. Hardware

https://whalers.ir/blog/extraction-agent-and-firewall-software-vs-hardware/3852/