lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Tue, 2 Dec 2008 22:08:34 +0200
From: "James Matthews" <nytrokiss@...il.com>
To: "Elazar Broad" <elazar@...hmail.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Sonicwall license servers down .. all
	customers affected

I am sure Sonic wall is going to lose many customers and other companies
should learn and not put DRM in their products. I hope this will teach them.

On Tue, Dec 2, 2008 at 9:36 PM, Elazar Broad <elazar@...hmail.com> wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> I stopped using SonicWall when I learned I had to purchase a whole
> new device for a customer that just wanted to add a few more
> machines to their network, instead of bumping the license like most
> "normal" vendors.
>
> On Tue, 02 Dec 2008 14:14:43 -0500 IT Security
> <it.security.lists@...il.com> wrote:
> >Sonicwall (makers of various security products) has had their
> >license
> >manager (server) go haywire overnight and it's "reset" (meaning
> >invalidated)
> >the licenses on all of their email security products. This means
> >customers
> >can't login to their own systems (a good case against draconian
> >DRM like
> >this). Calls to support have gone straight to voicemail all
> >morning, and no
> >ETA for resolution yet exists.
> >
> >This is affecting **all** of their customers, as far as I can tell
> >(and
> >based on what I'm told by their general support ticket-taker).
> >
> >Their forum (probably requires registration) is full of complaints
> >about it.
> >Screenshots of it and other problem areas are available on request
> >.. but I
> >don't want to email them to this entire list).
> >
> >The first alert was these warnings :
> >
> >----------------------------------------------------------------
> >~~ SonicWALL Email Security Alert (6.2.2.1071) ~~
> >----------------------------------------------------------------
> >
> >[Summary: Your Email Security licenses have been reset.]
> >
> >Details:
> >Host Name: **ourmailhost**
> >Description: The Email Security licenses have been reset at
> >12/02/2008 04:18 EST. The email filtering will not be
> >working.
> >
> >TimeStamp:
> >LocalTime: Tue Dec 2 04:18:49 2008
> >GMT: Tue Dec 2 09:18:49 2008
> >
> >Additional Information:
> >Recommended Action: Please contact SonicWall Technical
> >Support.
> >
> >A response from their technical support on the issue went like
> >this :
> >
> >"The issue is on our backend server who stores the registrations,
> >some ES
> >appliances got licences resetted. The exact cause is still being
> >analized
> >with high priority. In those cases entering the mysonicwall
> >credentials or
> >uploading file solve the issue. Kind Regards Ivan"
> >
> >And as of now, their license server is **still** off-line :
> >
> >$ telnet licensemanager.sonicwall.com 443
> >Trying 204.212.170.143...
> >telnet: Unable to connect to remote host: Connection refused
> >
> >DRM schemes like this only cause problems for the LEGITIMATE
> >customers .
> -----BEGIN PGP SIGNATURE-----
> Charset: UTF8
> Version: Hush 3.0
> Note: This signature can be verified at https://www.hushtools.com/verify
>
> wpwEAQECAAYFAkk1jiwACgkQi04xwClgpZidpwP9EGnoiLpcTxqCI8uZn6IPZ5xNfSXs
> mFJBuV7+4DimJdh1Wr6XdevITM3XTvb56SqoLuKYXJTatlt5pExV16PqpCbNFTIGJl/x
> TjqFF2//M1GE0+02mfSpVFBTXAsji6chEWSM7KSk+4h/BGIpppc1bLC45JEscgrEWp4N
> OBvxfp8=
> =zRVw
> -----END PGP SIGNATURE-----
>
> --
> Paying too much for your business phone system?  Click here to compare
> systems from top companies.
>
> http://tagline.hushmail.com/fc/PnY6qxu9tWrxyM1PdHDmXgMv34TDO7Gvn9NbAdfSuL24iBSp0vlKw/
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
http://www.astorandblack.com/

http://www.jewelerslounge.com/liberty-coin-cufflinks

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ