Inconsistent Blocking of Source IP Addresses in pfSense 2.4.4_1 for Failed Authentication

Inconsistent Blocking of Source IP Addresses in pfSense 2.4.4_1 for Failed Authentication

CVE-2018-20799 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of source IP addresses on the basis of failed SSH authentication (the behavior does not match the sshguard documentation), which might make it easier for attackers to bypass intended access restrictions.

Learn more about our Cis Benchmark Audit For Pfsense Firewall.