Israel makes the headlines every once in a while thanks to what they claim is state-of-the-art cybersecurity, but this doesn’t necessarily mean that finding flaws in its systems is something that can’t be done.
Security researcher Eitan Caspi certainly knows this best, as he recently discovered an open SSH access on an Israeli government DNS server after checking the quality of HTTPS sites of the gov.il subdomains.
Using an online SSL checker developed by Qualys, Caspi analyzed the SSL configuration on servers, eventually receiving a reply on port 22 from one of the checked IPs. Port 22 is used by SSH, a service that allows administrators to connect to Linux servers, and Caspi says that the open access allowed him to try to log in.
Israeli security staff quick to take action
The open access vulnerability was reported to the Israeli CERT duri…
Advertise on IT Security News.
Read the complete article: Open SSH Access Found on Israeli Government DNS Server