David, Yes, and I don't know why that didn't dawn on me before. Our corporate VPN requires it so I have to use it. I have read about setting up a wrapper script that establishes a chroot in which the trojan can run. I will do some research on that. Ben Kietzman ben at kietzman.org On Thu, Jan 19, 2012 at 6:26 AM, David Woodhouse <dwmw2 at infradead.org> wrote: > On Wed, 2012-01-18 at 20:32 -0600, Ben Kietzman wrote: >> Doing the split tunneling did not help, but I did find out some >> interesting information. ?I was watching the Firefox profile >> directories and files. ?I noticed that the Firefox profile directory >> (ex: ?/home/ben/.mozilla/firefox/e1mljmbg.default) kept getting wiped >> out every time I established an OpenConnect VPN connection. ?The >> directory itself remains, but it was emptied of all content. > > Are you using the Cisco Secure Desktop nonsense? If so, you're letting > the server run some arbitrary Cisco-provided trojan on your machine. > That would be my first place to look... > > -- > dwmw2
