ISC StormCast for Tuesday, September 12th 2017
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS ISC Handlers
4.9 • 754 Ratings
🗓️ 12 September 2017
⏱️ 7 minutes
🧾️ Download transcript
Summary
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hello, welcome to the Tuesday, September 12, 2017 edition of the Sands Internet Storm Center's |
| 0:07.6 | Stormcast. My name is Johannes Ulrich, and I'm recording from Las Vegas, Nevada. |
| 0:13.9 | Now, one of the fallouts, of course, of last week's Java struts vulnerability announcements |
| 0:19.8 | is that there are a lot of other vendors |
| 0:23.2 | that include Java struts too as part of their products. |
| 0:28.9 | So we are seeing some of these advisories now trickling out. |
| 0:33.8 | Most notably last Friday, Cisco released a pretty extensive advisory with a list of all |
| 0:41.1 | their products that are using Java struts. Of course, Cisco makes much more than switches |
| 0:47.9 | and routers. There are a lot of web apps, like for example, the Cisco WebEx meetings server that would be a part of it a lot of their voice and unified communication devices do include web applications that are relying on Java struts so take a look at this advisory if you're using any of these Cisco products in order to make sure that you are |
| 1:12.6 | patching these products. And I've talked in the past about anti-malware applications |
| 1:19.6 | that are intercepting TLS. That's often a necessary evil because you do want anti-malware to be able to inspect application traffic |
| 1:31.0 | that is TLS encrypted. Typically, this shouldn't really, if properly done, cause any problems |
| 1:38.7 | because it is done on the host itself. I'm not talking about proxy servers and the like, but essentially little |
| 1:46.3 | local host proxies that these anti-malware applications intercept. Now, the emphasis here is it should |
| 1:53.9 | not cause any problems, but often it does. If, for example, certificates aren't properly created, if TLS is downcreated then you may actually |
| 2:05.3 | no longer be able to connect with your web browser to certain sites. Google Chrome now went a step |
| 2:12.9 | further in order to better inform the user about such applications. |
| 2:18.3 | If a connection fails because of an application installed on the host itself that does intercept TLS, |
| 2:26.3 | then future versions of Chrome will attempt to identify the particular application |
| 2:32.3 | to make it easier for the user to, for example, disable |
| 2:36.0 | or maybe even patch that application. The latest beta version of Chrome has this feature installed. |
| 2:44.4 | You have to enable it. It's not enabled by default. It will likely show up in version 63 of Chrome, which is scheduled to appear in December. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.