Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 20 replies
  • Subscribers 1 subscriber
  • Views 31210 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Logmein Issues

wingman
Hi All

I am using HTTPS scanning on my 7.501 and when I launch logmein to control a client the java fails indicating a possible "man-in-the-middle" attack. Does anyone know how to resolve this/experienced this problem before?

Ports TCP port 443 and 80 are opened as per logmein document

Thanks


This thread was automatically locked due to age.
Parents
  • 0
    Wingman, the Astaro HTTPS scanning is done as a mitm.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Wingman, the Astaro HTTPS scanning is done as a mitm.


    sorry I haven't phrase my question properly. I know that https scanning acts as mitm (that's why you deploy the personal CA etc). Its just doesn't make sense as to why this website thinks it's a mitm and the rest of the https websites don't have any issues
Reply
  • 0 in reply to BAlfson
    Wingman, the Astaro HTTPS scanning is done as a mitm.


    sorry I haven't phrase my question properly. I know that https scanning acts as mitm (that's why you deploy the personal CA etc). Its just doesn't make sense as to why this website thinks it's a mitm and the rest of the https websites don't have any issues
Children
  • 0 in reply to wingman
    sorry I haven't phrase my question properly. I know that https scanning acts as mitm (that's why you deploy the personal CA etc). Its just doesn't make sense as to why this website thinks it's a mitm and the rest of the https websites don't have any issues


    As i have posted many times.  Logmein and other remote access sites don't like their traffic being intercepted..and it's not hard to detect the mitm of the astaro.  they do what should be done..break when faced with a mitm.  disable the https scanning...some sites/programs won't work(and frankly NONE of them should) with this type of proxy in the middle.  It breaks the chain of trust that encryption is supposed to protect.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow