From 97ac87f4acc2a7baa645f3603405e8335e82ccf7 Mon Sep 17 00:00:00 2001 From: Yuri Slobodyanyuk Date: Sun, 19 Mar 2023 16:59:49 +0000 Subject: [PATCH] Added 2 new recommendations to the Fortigate SSL VPN Hardening Guide --- .../fortigate-ssl-vpn-hardening-guide.adoc | 6 +- .../fortigate-ssl-vpn-hardening-guide.pdf | 236 +++++++++--------- 2 files changed, 121 insertions(+), 121 deletions(-) diff --git a/cheat-sheets/fortigate-ssl-vpn-hardening-guide.adoc b/cheat-sheets/fortigate-ssl-vpn-hardening-guide.adoc index 210a15e..2c1bfce 100644 --- a/cheat-sheets/fortigate-ssl-vpn-hardening-guide.adoc +++ b/cheat-sheets/fortigate-ssl-vpn-hardening-guide.adoc @@ -247,9 +247,9 @@ end == Create a no-access portal and set it as default in the VPN settings Once you have VPN SSL enabled, you *have* to specify the default portal -to which all unmapped to portals user will be assigned. To prevent unintended -users/groups connecting via default portal, create the one disabling all access -inside it and then set it as the default. +to which all unmapped to portals users will be assigned. To prevent unintended +users/groups connecting via this default portal, create the one disabling all +the access inside it and then set it as the default. * Create a portal with no factual access: diff --git a/cheat-sheets/fortigate-ssl-vpn-hardening-guide.pdf b/cheat-sheets/fortigate-ssl-vpn-hardening-guide.pdf index 75f217a..396fb4a 100644 --- a/cheat-sheets/fortigate-ssl-vpn-hardening-guide.pdf +++ b/cheat-sheets/fortigate-ssl-vpn-hardening-guide.pdf @@ -4,8 +4,8 @@ << /Title (Fortigate VPN SSL Hardening Guide) /Creator (Asciidoctor PDF 1.5.3, based on Prawn 2.2.2) /Producer (Asciidoctor PDF 1.5.3, based on Prawn 2.2.2) -/ModDate (D:20230319165457+00'00') -/CreationDate (D:20230319165540+00'00') +/ModDate (D:20230319165933+00'00') +/CreationDate (D:20230319165941+00'00') >> endobj 2 0 obj @@ -7718,7 +7718,7 @@ x endstream endobj 73 0 obj -<< /Length 9310 +<< /Length 9331 >> stream q @@ -7867,12 +7867,12 @@ ET 0.2 0.2 0.2 scn 0.2 0.2 0.2 SCN -1.67 Tw +2.482 Tw BT 48.24 609.746 Td /F1.0 10.5 Tf -[<706f7274616c7320757365722077696c6c2062652061737369676e65642e2054> 29.7852 <6f2070726576656e7420756e696e74656e6465642075736572732f67726f75707320636f6e6e656374696e67207669612064656661756c7420706f7274616c2c>] TJ +[<706f7274616c732075736572732077696c6c2062652061737369676e65642e2054> 29.7852 <6f2070726576656e7420756e696e74656e6465642075736572732f67726f75707320636f6e6e656374696e672076696120746869732064656661756c74>] TJ ET @@ -7885,7 +7885,7 @@ ET BT 48.24 593.966 Td /F1.0 10.5 Tf -<63726561746520746865206f6e652064697361626c696e6720616c6c2061636365737320696e7369646520697420616e64207468656e20736574206974206173207468652064656661756c742e> Tj +<706f7274616c2c2063726561746520746865206f6e652064697361626c696e6720616c6c207468652061636365737320696e7369646520697420616e64207468656e20736574206974206173207468652064656661756c742e> Tj ET 0.0 0.0 0.0 SCN @@ -10657,122 +10657,122 @@ xref 0000786655 00000 n 0000828433 00000 n 0000829691 00000 n -0000839054 00000 n -0000839440 00000 n -0000839484 00000 n -0000839528 00000 n -0000847999 00000 n -0000848354 00000 n -0000848398 00000 n -0000859709 00000 n -0000860117 00000 n -0000860161 00000 n -0000860205 00000 n -0000860249 00000 n -0000860989 00000 n -0000861946 00000 n -0000862119 00000 n -0000862304 00000 n -0000862468 00000 n -0000862641 00000 n -0000862816 00000 n -0000862940 00000 n -0000863066 00000 n -0000863237 00000 n -0000863409 00000 n -0000863619 00000 n -0000863829 00000 n -0000864040 00000 n -0000864201 00000 n -0000864364 00000 n -0000864533 00000 n -0000864703 00000 n -0000864872 00000 n -0000865043 00000 n -0000865232 00000 n -0000865423 00000 n -0000865577 00000 n -0000865732 00000 n -0000865904 00000 n -0000866077 00000 n -0000866297 00000 n -0000866516 00000 n -0000866737 00000 n -0000866909 00000 n -0000867083 00000 n -0000867258 00000 n -0000867434 00000 n -0000867635 00000 n -0000867838 00000 n -0000868040 00000 n -0000868216 00000 n -0000868393 00000 n -0000868573 00000 n -0000868754 00000 n -0000868915 00000 n -0000869079 00000 n -0000869243 00000 n -0000869405 00000 n -0000869569 00000 n -0000869734 00000 n -0000869904 00000 n -0000870074 00000 n -0000870229 00000 n -0000870384 00000 n -0000870528 00000 n -0000870672 00000 n -0000870750 00000 n -0000870991 00000 n -0000871182 00000 n -0000871355 00000 n -0000871711 00000 n -0000872237 00000 n -0000872552 00000 n -0000872896 00000 n -0000873244 00000 n -0000873678 00000 n -0000873964 00000 n -0000874322 00000 n -0000874876 00000 n -0000875235 00000 n -0000875603 00000 n -0000876059 00000 n -0000876441 00000 n -0000876833 00000 n -0000877125 00000 n -0000877453 00000 n -0000877801 00000 n -0000878089 00000 n -0000878319 00000 n -0000878535 00000 n -0000878806 00000 n -0000879077 00000 n -0000879268 00000 n -0000879459 00000 n -0000879650 00000 n -0000879841 00000 n -0000880032 00000 n -0000880223 00000 n -0000889186 00000 n -0000889407 00000 n -0000890770 00000 n -0000891685 00000 n -0000902619 00000 n -0000902835 00000 n -0000904198 00000 n -0000905114 00000 n -0000911365 00000 n -0000911591 00000 n -0000912954 00000 n -0000913869 00000 n -0000918974 00000 n -0000919189 00000 n -0000920552 00000 n +0000839075 00000 n +0000839461 00000 n +0000839505 00000 n +0000839549 00000 n +0000848020 00000 n +0000848375 00000 n +0000848419 00000 n +0000859730 00000 n +0000860138 00000 n +0000860182 00000 n +0000860226 00000 n +0000860270 00000 n +0000861010 00000 n +0000861967 00000 n +0000862140 00000 n +0000862325 00000 n +0000862489 00000 n +0000862662 00000 n +0000862837 00000 n +0000862961 00000 n +0000863087 00000 n +0000863258 00000 n +0000863430 00000 n +0000863640 00000 n +0000863850 00000 n +0000864061 00000 n +0000864222 00000 n +0000864385 00000 n +0000864554 00000 n +0000864724 00000 n +0000864893 00000 n +0000865064 00000 n +0000865253 00000 n +0000865444 00000 n +0000865598 00000 n +0000865753 00000 n +0000865925 00000 n +0000866098 00000 n +0000866318 00000 n +0000866537 00000 n +0000866758 00000 n +0000866930 00000 n +0000867104 00000 n +0000867279 00000 n +0000867455 00000 n +0000867656 00000 n +0000867859 00000 n +0000868061 00000 n +0000868237 00000 n +0000868414 00000 n +0000868594 00000 n +0000868775 00000 n +0000868936 00000 n +0000869100 00000 n +0000869264 00000 n +0000869426 00000 n +0000869590 00000 n +0000869755 00000 n +0000869925 00000 n +0000870095 00000 n +0000870250 00000 n +0000870405 00000 n +0000870549 00000 n +0000870693 00000 n +0000870771 00000 n +0000871012 00000 n +0000871203 00000 n +0000871376 00000 n +0000871732 00000 n +0000872258 00000 n +0000872573 00000 n +0000872917 00000 n +0000873265 00000 n +0000873699 00000 n +0000873985 00000 n +0000874343 00000 n +0000874897 00000 n +0000875256 00000 n +0000875624 00000 n +0000876080 00000 n +0000876462 00000 n +0000876854 00000 n +0000877146 00000 n +0000877474 00000 n +0000877822 00000 n +0000878110 00000 n +0000878340 00000 n +0000878556 00000 n +0000878827 00000 n +0000879098 00000 n +0000879289 00000 n +0000879480 00000 n +0000879671 00000 n +0000879862 00000 n +0000880053 00000 n +0000880244 00000 n +0000889207 00000 n +0000889428 00000 n +0000890791 00000 n +0000891706 00000 n +0000902640 00000 n +0000902856 00000 n +0000904219 00000 n +0000905135 00000 n +0000911386 00000 n +0000911612 00000 n +0000912975 00000 n +0000913890 00000 n +0000918995 00000 n +0000919210 00000 n +0000920573 00000 n trailer << /Size 185 /Root 2 0 R /Info 1 0 R >> startxref -921467 +921488 %%EOF