> SNF 7.2 has a very serious flaw!!! I found it today. The flaw is that > any > user who have access to the PC that has been used by system > administrator > can log in into the firewall without giving a password. (...) > 3. type back https://192.168.0.1:8443 the page will come out and press > login button.. Voila.. you can access the firewall administartion page > without password. What a very secured firewall! Yup. Would you leave a root shell availiable to anyone ? This is a very serious security flaw too. If you work on a public computer, I think you always kill each and every xterm/browser you opened before leaving your computer. Well, this isn't different with the firewall. If somebody else is using your computer, disconnect before leaving, or at least close your browser. Closing your browser will solve this "serious flaw". Amaury
