Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/rng342908023490981/statuses/113838749821085773">rng342908023490981 (rng342908023490981@cyberplace.social)'s status on Friday, 17-Jan-2025 00:31:27 JST</a><a href="https://cyberplace.social/@rng342908023490981" title="rng342908023490981@cyberplace.social"><img src="https://gnusocial.jp/theme/gnusocialjp/default-avatar-stream.png" width="48" height="48" alt="rng342908023490981" style="position: absolute; left: 0; top: 0;">rng342908023490981</a><div><a href="https://cyberplace.social/@GossiTheDog/113838675735383982" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/230467" title="christopherkunz@chaos.social">Dr. Christopher Kunz</a></li></ul></div></section><article><p><a href="https://cyberplace.social/@GossiTheDog">@GossiTheDog</a> <a href="https://chaos.social/@christopherkunz">@christopherkunz</a> </p><p>The dirty secret is that the default encryption key on Fortigate firewalls is shared across ALL Fortigates (and a couple other platforms) and has been compromised for a long time. So if you haven't set up your own key through enabling the private-data-encryption feature, you too can have your passwords cracked and exposed to the Internet.</p><p>Follow the hardening docs and don't forget this step:<br><a href="https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-enable-private-data-encryption-feature-on-a/ta-p/339071" rel="nofollow noreferrer">https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-enable-private-data-encryption-feature-on-a/ta-p/339071</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4382063#notice-8578905">In conversation</a><time datetime="2025-01-17T00:31:27+09:00" title="Friday, 17-Jan-2025 00:31:27 JST">about 2 days ago</time> <span>from <span><a href="https://cyberplace.social/@rng342908023490981/113838749821085773" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@rng342908023490981/113838749821085773">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: community.fortinet.com</div><h5><a href="https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-enable-private-data-encryption-feature-on-a/ta-p/339071">Technical Tip: How to enable private-data-encryption feature on a standalone FortiGate</a></h5><div> from <span>https://community.fortinet.com/t5/user/viewprofilepage/user-id/56900</span></div></header><div>Description   This article describes how to enable private-data-encryption feature on a standalone FortiGate.   Scope   FortiGate v6.2+   Solution   The Private Data Encryption feature on FortiGate devices is designed to enhance security by encrypting sensitive configuration data stored on the devic...</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
rng342908023490981 (rng342908023490981@cyberplace.social)'s status on Friday, 17-Jan-2025 00:31:27 JSTrng342908023490981
in reply to
- Kevin Beaumont
- Dr. Christopher Kunz
@GossiTheDog @christopherkunz
The dirty secret is that the default encryption key on Fortigate firewalls is shared across ALL Fortigates (and a couple other platforms) and has been compromised for a long time. So if you haven't set up your own key through enabling the private-data-encryption feature, you too can have your passwords cracked and exposed to the Internet.
Follow the hardening docs and don't forget this step:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-enable-private-data-encryption-feature-on-a/ta-p/339071
In conversationabout 2 days ago from cyberplace.socialpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: community.fortinet.com
  Technical Tip: How to enable private-data-encryption feature on a standalone FortiGate
  from https://community.fortinet.com/t5/user/viewprofilepage/user-id/56900
  Description This article describes how to enable private-data-encryption feature on a standalone FortiGate. Scope FortiGate v6.2+ Solution The Private Data Encryption feature on FortiGate devices is designed to enhance security by encrypting sensitive configuration data stored on the devic...

Public

Embed Notice

HTML Code

Corresponding Notice