Exploiting API4 — 8 Real-World Unrestricted Resource Consumption Attack Scenarios (and How to Stop Them)

Unrestricted Resource ConsumptionAPI4:2023 is the only threat category in the OWASP API Security Top 10 explicitly dedicated to Denial of Service DoS and resource abuse. But despite being just one category, attackers can exploit it in many different ways; from large file uploads and expensive...

Poor ICA streaming performance observed when HDX Insights enabled on NetScaler AppFlow policies

Users are facing high latency issue and they are not able to do audio and video calls. Apps and Desktops ICA streams performs poorly and high end-user experience is observed "HDX Latency" calculations made by VDA fluctuate up/down from 10ms to 900+ ms observed using command "ctxsession -v" and...

Configuring TCP KeepAlive Values to Improve WAN and ICA to Place ICA Session in a Disconnected State

After an ICATCP session is abnormally terminated, subsequent viewing of the ICA-TCP session in either Citrix Server Administration, mfadmin.exe, Terminal server Administration, or the Management Console, shows the connection in an ACTIVE state not a DISCONNECTED state. This article contains...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

CVE-2022-22153 SRX Series and MX Series with SPC3: A high percentage of fragments might lead to high latency or packet drops

An Insufficient Algorithmic Complexity combined with an Allocation of Resources Without Limits or Throttling vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX Series and MX Series with SPC3 allows an unauthenticated network attacker to cause latency in transit...

Out Of Band, Out Of Sight, Out Of Mind

Satellite receivers aboard maritime vessels can be tricky things to manage, yet are crucial to efficient operations of modern drilling rigs and ships. Particularly on rigs, it’s not that unusual for a receiver dish to be knocked out of alignment during drilling operations. Lose satcoms and you’re...

February 22, 2018—KB4077528 (OS Build 15063.936)

February 22, 2018—KB4077528 OS Build 15063.936 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses issue where an application cannot read or write attributes of windows that belong t...

mosh - Mobile Shell replacement for SSH (more robust and responsive, especially over Wi-Fi, cellular, and long-distance links)

Mosh is a remote terminal application that supports intermittent connectivity, allows roaming, and provides speculative local echo and line editing of user keystrokes. It aims to support the typical interactive uses of SSH, plus: Mosh keeps the session alive if the client goes to sleep and wakes ...

[FAQ]: Is ICA or CGP recommended on high latency links when traffic is being optimized?

Question: Is ICA or CGP recommended on high latency links when traffic is being optimized? Answer: CGP is recommended on high latency links because CGP has a fixed buffer size on the server and on long latency links, despite CB TCP optimizations, the server won’t send data faster its waiting for ...