On Fri, 2014-10-17 at 17:45 +0000, Aamir Ahmed -X (amiahmed) wrote: > Hello Nikos/Team > > One of Cisco customers referred to the information available at: > http://www.infradead.org/openconnect/csd.html & contact Cisco TAC to > understand if Cisco CSD was truly vulnerable to the problem you mentioned > here. Hi Aamir, I'm not sure which particular problem you're looking at here. Do you mean the fact that CSD can be 'fooled' by running our own tool *instead* of the official CSD hostscan, and just posting the "expected" results without actually doing the intended checks for real? -- dwmw2 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5745 bytes Desc: not available URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20141017/754f52b8/attachment.bin>
