Reply to post:

US-Cert alert! Thanks to a massive bug, VPN now stands for 'Vigorously Pwned Nodes'

Tom Chiverton 1

What ?

What ?!?

VPNs don't have 'session cookies'. That's a HTTP thing. Are you talking about proxies ?

Even where the underlying PtP or whatever link needs a session-like construct, these are *of course* exposed if the attacker owns the end point ? So. Umm.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2021