漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2016-0170024
漏洞标题:香港Simcentric Solutions有限公司FortiGate防火墙存在后门(香港地區)
相关厂商:Fortinet
漏洞作者: 路人甲
提交时间:2016-02-17 17:54
修复时间:2016-02-22 18:00
公开时间:2016-02-22 18:00
漏洞类型:命令执行
危害等级:高
自评Rank:20
漏洞状态:已交由第三方合作机构(hkcert香港互联网应急协调中心)处理
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2016-02-17: 细节已通知厂商并且等待厂商处理中
2016-02-22: 厂商已经主动忽略漏洞,细节向公众公开
简要描述:
香港Simcentric为IT企业及中小企提供远端服务,服务包括IP宽频,专属主机,主机代管,网页寄存,虚拟主机及专业服务。http://www.douban.com/note/183738641/
公司网页:http://www.simcentric.com/big5/index.html (百度搜索到的一般都是国内的,而这个网站才是真正他的官方网站)
详细说明:
漏洞证明:
<code>FG100C3G09619286 # show
config system global
set admin-port 9080
set admintimeout 444
set hostname "FG100C3G09619286"
set ip-src-port-range 20000-25000
set language simch
set strict-dirty-session-check disable
set tcp-halfclose-timer 30
set tcp-halfopen-timer 20
set tcp-timewait-timer 30
set timezone 55
end
config system accprofile
edit "prof_admin"
set admingrp read-write
set authgrp read-write
set endpoint-control-grp read-write
set fwgrp read-write
set loggrp read-write
unset menu-file
set mntgrp read-write
set netgrp read-write
set routegrp read-write
set sysgrp read-write
set updategrp read-write
set utmgrp read-write
set vpngrp read-write
set wifi read-write
next
end
config system interface
edit "wan1"
set vdom "root"
set ip **.**.**.** **.**.**.**
set allowaccess ping https ssh http telnet
set type physical
set alias "外网口"
next
edit "modem"
set vdom "root"
set mode pppoe
set allowaccess fgfm
set type physical
next
edit "ssl.root"
set vdom "root"
set type tunnel
next
edit "wan2"
set vdom "root"
set allowaccess ping fgfm
set type physical
next
edit "switch"
set vdom "root"
set ip **.**.**.** **.**.**.**
set allowaccess ping https http
set ipmac enable
set type physical
set alias "内网口"
next
end
config system admin
edit "admin"
set accprofile "super_admin"
set vdom "root"
config dashboard-tabs
edit 1
set name "Dashboard"
next
edit 2
set name "Usage"
next
end
config dashboard
edit 16
set widget-type jsconsole
set tab-id 1
set column 1
next
edit 15
set widget-type tr-history
set tab-id 1
set column 1
set interface "wan1"
set refresh enable
next
edit 1
set tab-id 1
set column 1
next
edit 2
set widget-type licinfo
set tab-id 1
set column 1
next
edit 14
set widget-type tr-history
set tab-id 1
set column 2
set interface "switch"
set refresh enable
next
edit 3
set widget-type sysop
set tab-id 1
set column 2
next
edit 4
set widget-type sysres
set tab-id 1
set column 2
next
edit 8
set widget-type sessions
set tab-id 1
set column 2
set status close
next
edit 5
set widget-type alert
set tab-id 1
set column 2
next
edit 6
set widget-type statistics
set tab-id 1
set column 2
next
edit 13
set widget-type app-usage
set tab-id 2
set column 1
next
end
set password ENC AK1GE1xmRoLOwbdXaXva5DjV6PyhJgUGjhWgyjoBh0+/EA=
next
edit "fortinet"
set accprofile "super_admin"
set vdom "root"
config dashboard-tabs
edit 1
set name "Dashboard"
next
edit 2
set name "Usage"
next
end
config dashboard
edit 1
set tab-id 1
set column 1
next
edit 2
set widget-type licinfo
set tab-id 1
set column 1
next
edit 7
set widget-type jsconsole
set tab-id 1
set column 1
next
edit 4
set widget-type sysres
set tab-id 1
set column 1
next
edit 3
set widget-type sysop
set tab-id 1
set column 2
next
edit 5
set widget-type alert
set tab-id 1
set column 2
next
edit 6
set widget-type statistics
set tab-id 1
set column 2
next
edit 8
set widget-type sessions
set tab-id 1
set column 2
next
edit 13
set widget-type app-usage
set tab-id 2
set column 1
next
end
set password ENC AK1567lOpmkdH22zyFQRzejQ/yzMdJU3v0PUM3ehUojcy4=
next
edit "halo"
set accprofile "super_admin"
set vdom "root"
config dashboard-tabs
edit 1
set name "Status"
next
end
config dashboard
edit 1
set tab-id 1
set column 1
next
edit 2
set widget-type licinfo
set tab-id 1
set column 1
next
edit 8
set widget-type tr-history
set tab-id 1
set column 1
set interface "wan1"
set refresh enable
next
edit 3
set widget-type jsconsole
set tab-id 1
set column 1
next
edit 4
set widget-type sysres
set tab-id 1
set column 2
set time-period 0
set chart-color 0
next
edit 5
set widget-type sessions
set tab-id 1
set column 2
next
edit 6
set widget-type sysop
set tab-id 1
set column 2
next
edit 7
set widget-type alert
set tab-id 1
set column 2
next
end
set password ENC AK1cIGaeUENu7Lwf4rNLOxTETzm9uuPVhnlSQ8Uv6mQKwQ=
next
end
config system ha
set override disable
end
config system dns
set primary **.**.**.**
set secondary **.**.**.**
end
config system replacemsg-image
edit "logo_fnet"
set image-base64 ''
set image-type gif
next
edit "logo_fguard_wf"
set image-base64 ''
set image-type gif
next
edit "logo_fw_auth"
set image-base64 ''
set image-type png
next
edit "logo_v2_fnet"
set image-base64 ''
set image-type png
next
edit "logo_v2_fguard_wf"
set image-base64 ''
set image-type png
next
end
config system replacemsg mail "email-block"
set buffer "Potentially Dangerous Attachment Removed. The file \"%%FILE%%\" has been blocked. File quarantined as: \"%%QUARFILENAME%%\"."
set header 8bit
set format text
end
config system replacemsg mail "email-virus"
set buffer "Dangerous Attachment has been Removed. The file \"%%FILE%%\" has been removed because of a virus. It was infected with the \"%%VIRUS%%\" virus. File quarantined as: \"%%QUARFILENAME%%\".%%VIRUS_REF_URL%%%%VIRUS_REF_URL%%"
set header 8bit
set format text
end
config system replacemsg mail "email-dlp"
set buffer "This email has been blocked. The email message appeared to contain a data leak."
set header 8bit
set format text
end
config system replacemsg mail "email-dlp-subject"
set buffer "Data leak detected!"
set header 8bit
set format text
end
config system replacemsg mail "email-dlp-ban"
set buffer "This email has been blocked because a data leak was detected. Please contact your admin to be re-enabled."
set header 8bit
set format text
end
config system replacemsg mail "email-dlp-ban-sender"
set buffer "This email has been blocked because the sender has sent a data leak. Please contact your admin to be re-enabled."
set header 8bit
set format text
end
config system replacemsg mail "email-filesize"
set buffer "This email has been blocked. The email message is larger than the configured file size limit."
set header 8bit
set format text
end
config system replacemsg mail "partial"
set buffer "Fragmented emails are blocked."
set header 8bit
set format text
end
config system replacemsg mail "smtp-block"
set buffer "The file %%FILE%% has been blocked. File quarantined as: %%QUARFILENAME%%"
set header none
set format text
end
config system replacemsg mail "smtp-virus"
set buffer "The file %%FILE%% has been infected with the virus %%VIRUS%% File quarantined as %%QUARFILENAME%%"
set header none
set format text
end
config system replacemsg mail "smtp-filesize"
set buffer "This message is larger than the configured limit and has been blocked."
set header none
set format text
end
config system replacemsg http "bannedword"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>The URL you requested has been blocked</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>The URL you requested has been blocked</h1><p>The page you requested has been blocked because it contains a banned word.<br /><br />URL = %%PROTOCOL%%%%URL%%<br />%%OVERRIDE%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "url-block"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>The URL you requested has been blocked</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>The URL you requested has been blocked</h1><p>The page you have requested has been blocked, because the URL is banned.<br /><br />URL = %%URL%%<br />%%OVERRIDE%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "urlfilter-err"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Web Page Blocked</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Web Page Blocked</h1><p>%%URLFILTER_ERROR%% <br /><br />Web filter service error: %%URLFILTER_ERROR_DETAIL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "infcache-block"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>High Security Alert!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>High Security Alert!!</h1><p>The URL you requested was previously found to be infected.<br /><br />URL = %%PROTOCOL%%%%URL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-block"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>High Security Alert!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>High Security Alert!!</h1><p>You are not permitted to download the file \"%%FILE%%\"<br /><br />URL = %%PROTOCOL%%%%URL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-virus"
set buffer "<HTML><BODY><h2>High security alert!!!</h2><p>You are not permitted to download the file \"%%FILE%%\" because it is infected with the virus \"%%VIRUS%%\". </p><p>URL = http://%%URL%%</p><p>File quarantined as: %%QUARFILENAME%%.</p>%%VIRUS_REF_URL%%%%VIRUS_REF_URL%%</BODY></HTML>"
set header http
set format html
end
config system replacemsg http "http-filesize"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Attention!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Attention!!</h1><p>The file \"%%FILE%%\" has been blocked. The file is larger than the configured file size limit.<br /><br />URL = %%PROTOCOL%%%%URL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-dlp"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Attention!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Attention!!</h1><p>The transfer attempted appeared to contain a data leak!<br /><br />URL = %%PROTOCOL%%%%URL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-dlp-ban"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Attention!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Attention!!</h1><p>Your user authentication or IP address has been banned due to a detected data leak.You need an admin to re-enable your computer.<br /><br />URL = %%PROTOCOL%%%%URL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-archive-block"
set buffer "<HTML><BODY> <h2>Attention!!!</h2><p>The transfer contained an archive that has been blocked.</p><p>URL = %%PROTOCOL%%%%URL%%</p> </BODY></HTML>"
set header http
set format html
end
config system replacemsg http "http-contenttypeblock"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Attention!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Attention!!</h1><p>Content-type not permitted<br /><br />URL = %%PROTOCOL%%%%URL%%
<br />%%OVERRIDE%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "https-invalid-cert-block"
set buffer "<html><head><title>Untrusted Connection</title></head><body><font size=2><table width=\"100%\"><tr><td>%%FORTIGUARD_WF%%</td><td align=\"right\">%%FORTINET%%</td></tr><tr><td bgcolor=#ff6600 align=\"center\" colspan=2><font color=#ffffff><b>This Connection is Untrusted</b></font></td></tr></table><br><br>A secure connection to %%HOSTNAME%% cannot be established.<br>
Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site\'s identity can\'t be verified.<br>
<table><tr><td>Site:</td><td>%%HOSTNAME%%</td></tr>
<tr><td>Certificate CN:</td><td>%%CN%%</td></tr>
<tr><td>Certificate Authority:</td><td>%%AUTHORITY%%</td></tr>
<tr><td>Certificate Authority Validity:</td><td>Not Before: %%START_VALID%%<br>Not After: %%END_VALID%%</td></tr>
</table>
</font></body></html>"
set header http
set format html
end
config system replacemsg http "http-client-block"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Attention!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Attention!!</h1><p>You are not permitted to upload the file \"%%FILE%%\".<br /><br />URL = %%PROTOCOL%%%%URL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-client-virus"
set buffer "<HTML><BODY><h2>High security alert!!!</h2><p>You are not permitted to upload the file \"%%FILE%%\" because it is infected with the virus \"%%VIRUS%%\". </p><p>URL = http://%%URL%%</p><p>File quarantined as: %%QUARFILENAME%%.</p>%%VIRUS_REF_URL%%%%VIRUS_REF_URL%%</BODY></HTML>"
set header http
set format html
end
config system replacemsg http "http-client-filesize"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Attention!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Attention!!</h1><p>You request has been blocked. The request is larger than the configured file size limit.<br /><br />URL = %%PROTOCOL%%%%URL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-client-bannedword"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Attention!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Attention!!</h1><p>The page you uploaded has been blocked because it contains a banned word.<br /><br />URL = %%PROTOCOL%%%%URL%%</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-post-block"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Attention!!</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Attention!!</h1><p>HTTP POST action is not allowed for policy reasons.</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg http "http-client-archive-block"
set buffer "<HTML> <BODY> <h2>High security alert!!!</h2> <p>You are not permitted to upload the file \"%%FILE%%\".</p> <p>URL = %%PROTOCOL%%%%URL%%</p> </BODY> </HTML>"
set header http
set format html
end
config system replacemsg webproxy "deny"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Access Denied</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Access Denied</h1><p>The page you requested has been blocked by a firewall policy restriction.</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg webproxy "user-limit"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Access Denined</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Access Denined</h1><p>The maximum web proxy user limit has been reached.</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg webproxy "auth-challenge"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Firewall Authentication</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Firewall Authentication</h1><p>You must authenticate to use this service.</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg webproxy "auth-login-fail"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Firewall Authentication</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Firewall Authentication</h1><p>Authentication Failed</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg webproxy "auth-authorization-fail"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>Firewall Authorization</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>Firewall Authorization</h1><p>Authorization Failed</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg webproxy "http-err"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}div.msg{display:block;border:1px solid #30c;padding:0;width:500px;font-family:helvetica,sans-serif;margin:10px auto;}h1{font-weight:bold;color:#fff;font-size:14px;margin:0;padding:2px;text-align:center;background: #30c;}p{font-size:12px;margin:15px auto;width:75%;font-family:helvetica,sans-serif;text-align:left;}</style><title>%%HTTP_ERR_CODE%% %%HTTP_ERR_DESC%%</title></head><body><div class=\"oc\"><div class=\"ic\"><div class=\"msg\"><h1>%%HTTP_ERR_CODE%% %%HTTP_ERR_DESC%%</h1><p>The webserver for %%PROTOCOL%%%%URL%% reported that an error occurred while trying to access the website. Please click <u><a href=\"javascript:history.back()\">here</a></u> to return to the previous page.</p></div></div></div></body></html>"
set header http
set format html
end
config system replacemsg ftp "ftp-dl-infected"
set buffer "Transfer failed. The file %%FILE%% is infected with the virus %%VIRUS%%. File quarantined as %%QUARFILENAME%%."
set header none
set format text
end
config system replacemsg ftp "ftp-dl-blocked"
set buffer "Transfer failed. You are not permitted to transfer the file \"%%FILE%%\"."
set header none
set format text
end
config system replacemsg ftp "ftp-dl-filesize"
set buffer "File size limit exceeded."
set header none
set format text
end
config system replacemsg ftp "ftp-dl-dlp"
set buffer "Transfer failed. Data leak detected \"%%FILE%%\"."
set header none
set format text
end
config system replacemsg ftp "ftp-dl-dlp-ban"
set buffer "Transfer failed. You are banned from transmitting due to a detected data leak. Contact your admin to be re-enabled."
set header none
set format text
end
config system replacemsg ftp "ftp-explicit-banner"
set buffer "Welcome to Fortigate FTP proxy"
set header none
set format text
end
config system replacemsg ftp "ftp-dl-archive-block"
set buffer "Transfer failed. Archive \"%%FILE%%\" has been blocked."
set header none
set format text
end
config system replacemsg nntp "nntp-dl-infected"
set buffer "Dangerous Attachment has been Removed. The file \"%%FILE%%\" has been removed because of a virus. It was infected with the \"%%VIRUS%%\" virus. File quarantined as: \"%%QUARFILENAME%%\"."
set header none
set format text
end
config system replacemsg nntp "nntp-dl-blocked"
set buffer "The file %%FILE%% has been blocked. File quarantined as: %%QUARFILENAME%%"
set header none
set format text
end
config system replacemsg nntp "nntp-dl-filesize"
set buffer "This article has been blocked. The article is larger than the configured file size limit."
set header none
set format text
end
config system replacemsg nntp "nntp-dlp"
set buffer "This article has been blocked. It appears to contain a data leak."
set header none
set format text
end
config system replacemsg nntp "nntp-dlp-subject"
set buffer "Data leak detected!"
set header none
set format text
end
config system replacemsg nntp "nntp-dlp-ban"
set buffer "this article has been blocked. The user is banned for sending a data leak. Please contact your admin to be re-enabled."
set header none
set format text
end
config system replacemsg fortiguard-wf "ftgd-block"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\">
<html>
<head>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">
<title>Web Filter Violation</title>
<style type=\"text/css\">
html, body { margin: 0; padding: 0; font-family: Verdana, Arial, sans-serif; font-size: 10pt; }
h1, h2 { height: 82px; text-indent: -999em; margin: 0; padding: 0; margin: 0; }
div { margin: 0; padding: 0; }
div.header { background: url(%%IMAGE:logo_v2_fnet%%) 0 0 repeat-x; height: 82px; }
div.header h1 { background: url(%%IMAGE:logo_v2_fguard_wf%%) 0 0 no-repeat; }
div.header h2 { background: url(%%IMAGE:logo_v2_fnet%%) 0 -82px no-repeat; width: 160px; float: right; }
div.sidebar { width: 195px; height: 200px; float: left; }
div.main { padding: 5px; margin-left: 195px; }
div.buttons { margin-top: 30px; text-align: right; }
h3 { margin: 36px 0; font-size: 16pt; }
.blocked h3 { color: #c00; }
.authenticate h3 { color: #36c; }
h2.fgd_icon { background: url(%%IMAGE:logo_v2_fnet%%) 0 -166px repeat-x; width: 90px; height: 92px; margin: 48px auto; }
.blocked h2.fgd_icon { background-position: 0 -166px; }
.authenticate h2.fgd_icon { background-position: -89px -166px; }
form { width: 300px; margin: 30px 0; }
label { display: block; width: 300px; margin: 5px 0; line-height: 25px; }
label input { width: 200px; border: 1px solid #7f9db9; height: 20px; float: right; }
</style>
</head>
<body class=\"blocked\">
<div class=\"header\">
<h2>Powered By Fortinet</h2>
<h1>FortiGuard Web Filtering</h1>
</div>
<div class=\"sidebar\">
<h2 class=\"fgd_icon\">blocked</h2>
</div>
<div class=\"main\">
<h3>Web Page Blocked!</h3>
<div class=\"notice\">
<p>You have tried to access a web page which is in violation of your internet usage policy.</p>
<p>
URL: %%URL%%<br />
Category: %%CATEGORY%%
</p>
<p>
%%OVERRIDE%%
</p>
<p> To have the rating of this web page re-evaluated <a href=\"%%FTGD_RE_EVAL%%\">please click here</a>.</p>
</div>
</div>
</body>
</html>"
set header http
set format html
end
config system replacemsg fortiguard-wf "http-err"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\">
<html>
<head>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">
<title>%%HTTP_ERR_CODE%% %%HTTP_ERR_DESC%%</title>
<style type=\"text/css\">
html, body { margin: 0; padding: 0; font-family: Verdana, Arial, sans-serif; font-size: 10pt; }
h1, h2 { height: 82px; text-indent: -999em; margin: 0; padding: 0; margin: 0; }
div { margin: 0; padding: 0; }
div.header { background: url(%%IMAGE:logo_v2_fnet%%) 0 0 repeat-x; height: 82px; }
div.header h1 { background: url(%%IMAGE:logo_v2_fguard_wf%%) 0 0 no-repeat; }
div.header h2 { background: url(%%IMAGE:logo_v2_fnet%%) 0 -82px no-repeat; width: 160px; float: right; }
div.sidebar { width: 195px; height: 200px; float: left; }
div.main { padding: 5px; margin-left: 195px; }
div.buttons { margin-top: 30px; text-align: right; }
h3 { margin: 36px 0; font-size: 16pt; }
.blocked h3 { color: #c00; }
.authenticate h3 { color: #36c; }
h2.fgd_icon { background: url(%%IMAGE:logo_v2_fnet%%) 0 -166px repeat-x; width: 90px; height: 92px; margin: 48px auto; }
.blocked h2.fgd_icon { background-position: 0 -166px; }
.authenticate h2.fgd_icon { background-position: -89px -166px; }
form { width: 300px; margin: 30px 0; }
label { display: block; width: 300px; margin: 5px 0; line-height: 25px; }
label input { width: 200px; border: 1px solid #7f9db9; height: 20px; float: right; }
</style>
</head>
<body class=\"blocked\">
<div class=\"header\">
<h2>Powered By Fortinet</h2>
<h1>FortiGuard Web Filtering</h1>
</div>
<div class=\"sidebar\">
<h2 class=\"fgd_icon\">blocked</h2>
</div>
<div class=\"main\">
<h3>%%HTTP_ERR_CODE%% %%HTTP_ERR_DESC%%</h3><div class=\"notice\">The webserver for %%URL%% reported that an error occurred while trying to access the website.Please click <a onclick=\"history.back()\">here</a> to return to the previous page.</div> </div>
</body>
</html>"
set header http
set format html
end
config system replacemsg fortiguard-wf "ftgd-ovrd"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\">
<html>
<head>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">
<title>Web Filter Block Override</title>
<style type=\"text/css\">
html, body { margin: 0; padding: 0; font-family: Verdana, Arial, sans-serif; font-size: 10pt; }
h1, h2 { height: 82px; text-indent: -999em; margin: 0; padding: 0; margin: 0; }
div { margin: 0; padding: 0; }
div.header { background: url(%%IMAGE:logo_v2_fnet%%) 0 0 repeat-x; height: 82px; }
div.header h1 { background: url(%%IMAGE:logo_v2_fguard_wf%%) 0 0 no-repeat; }
div.header h2 { background: url(%%IMAGE:logo_v2_fnet%%) 0 -82px no-repeat; width: 160px; float: right; }
div.sidebar { width: 195px; height: 200px; float: left; }
div.main { padding: 5px; margin-left: 195px; }
div.buttons { margin-top: 30px; text-align: right; }
h3 { margin: 36px 0; font-size: 16pt; }
.blocked h3 { color: #c00; }
.authenticate h3 { color: #36c; }
h2.fgd_icon { background: url(%%IMAGE:logo_v2_fnet%%) 0 -166px repeat-x; width: 90px; height: 92px; margin: 48px auto; }
.blocked h2.fgd_icon { background-position: 0 -166px; }
.authenticate h2.fgd_icon { background-position: -89px -166px; }
form { width: 300px; margin: 30px 0; }
label { display: block; width: 300px; margin: 5px 0; line-height: 25px; }
label input { width: 200px; border: 1px solid #7f9db9; height: 20px; float: right; }
</style>
</head>
<body class=\"authenticate\">
<div class=\"header\">
<h2>Powered By Fortinet</h2>
<h1>FortiGuard Web Filtering</h1>
</div>
<div class=\"sidebar\">
<h2 class=\"fgd_icon\">authenticate</h2>
</div>
<div class=\"main\">
<h3>Web Filter Block Override</h3><div class=\"notice\">If you have been granted override creation privileges by your administrator, you can enter your username and password here to gain immediate access to the blocked web-page. If you do not have these privileges, please contact your administrator to gain access to the web-page.</div> <div>%%OVRD_FORM%%</div> </div>
</body>
</html>"
set header http
set format html
end
config system replacemsg fortiguard-wf "ftgd-quota"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\">
<html>
<head>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">
<title>Web Filter Quota Exceeded</title>
<style type=\"text/css\">
html, body { margin: 0; padding: 0; font-family: Verdana, Arial, sans-serif; font-size: 10pt; }
h1, h2 { height: 82px; text-indent: -999em; margin: 0; padding: 0; margin: 0; }
div { margin: 0; padding: 0; }
div.header { background: url(%%IMAGE:logo_v2_fnet%%) 0 0 repeat-x; height: 82px; }
div.header h1 { background: url(%%IMAGE:logo_v2_fguard_wf%%) 0 0 no-repeat; }
div.header h2 { background: url(%%IMAGE:logo_v2_fnet%%) 0 -82px no-repeat; width: 160px; float: right; }
div.sidebar { width: 195px; height: 200px; float: left; }
div.main { padding: 5px; margin-left: 195px; }
div.buttons { margin-top: 30px; text-align: right; }
h3 { margin: 36px 0; font-size: 16pt; }
.blocked h3 { color: #c00; }
.authenticate h3 { color: #36c; }
h2.fgd_icon { background: url(%%IMAGE:logo_v2_fnet%%) 0 -166px repeat-x; width: 90px; height: 92px; margin: 48px auto; }
.blocked h2.fgd_icon { background-position: 0 -166px; }
.authenticate h2.fgd_icon { background-position: -89px -166px; }
form { width: 300px; margin: 30px 0; }
label { display: block; width: 300px; margin: 5px 0; line-height: 25px; }
label input { width: 200px; border: 1px solid #7f9db9; height: 20px; float: right; }
</style>
</head>
<body class=\"blocked\">
<div class=\"header\">
<h2>Powered By Fortinet</h2>
<h1>FortiGuard Web Filtering</h1>
</div>
<div class=\"sidebar\">
<h2 class=\"fgd_icon\">blocked</h2>
</div>
<div class=\"main\">
<h3>Web Page Blocked</h3><div class=\"notice\"> <p>Your daily quota for this category of webpage has expired, in accordance with your internet usage policy.</p> <p>
URL: %%URL%%<br />
Category: %%CATEGORY%%
</p>
<p> To have the rating of this web page re-evaluated <a href=\"%%FTGD_RE_EVAL%%\">please click here</a>.</p>
<p>
%%OVERRIDE%%
</p>
</div> </div>
</body>
</html>"
set header http
set format html
end
config system replacemsg fortiguard-wf "ftgd-warning"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\">
<html>
<head>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\">
<title>Web Filter Block Override</title>
<style type=\"text/css\">
html, body { margin: 0; padding: 0; font-family: Verdana, Arial, sans-serif; font-size: 10pt; }
h1, h2 { height: 82px; text-indent: -999em; margin: 0; padding: 0; margin: 0; }
div { margin: 0; padding: 0; }
div.header { background: url(%%IMAGE:logo_v2_fnet%%) 0 0 repeat-x; height: 82px; }
div.header h1 { background: url(%%IMAGE:logo_v2_fguard_wf%%) 0 0 no-repeat; }
div.header h2 { background: url(%%IMAGE:logo_v2_fnet%%) 0 -82px no-repeat; width: 160px; float: right; }
div.sidebar { width: 195px; height: 200px; float: left; }
div.main { padding: 5px; margin-left: 195px; }
div.buttons { margin-top: 30px; text-align: right; }
h3 { margin: 36px 0; font-size: 16pt; }
.blocked h3 { color: #c00; }
.authenticate h3 { color: #36c; }
h2.fgd_icon { background: url(%%IMAGE:logo_v2_fnet%%) 0 -166px repeat-x; width: 90px; height: 92px; margin: 48px auto; }
.blocked h2.fgd_icon { background-position: 0 -166px; }
.authenticate h2.fgd_icon { background-position: -89px -166px; }
form { width: 300px; margin: 30px 0; }
label { display: block; width: 300px; margin: 5px 0; line-height: 25px; }
label input { width: 200px; border: 1px solid #7f9db9; height: 20px; float: right; }
</style>
</head>
<body class=\"authenticate\">
<div class=\"header\">
<h2>Powered By Fortinet</h2>
<h1>FortiGuard Web Filtering</h1>
</div>
<div class=\"sidebar\">
<h2 class=\"fgd_icon\">authenticate</h2>
</div>
<div class=\"main\">
<h3>Web Page Blocked!</h3>
<div class=\"notice\">
<p>You have tried to access a web page which is in violation of your internet usage policy.</p>
<p>
URL: %%URL%%<br />
Category: %%CATEGORY%%
</p>
<p> To have the rating of this web page re-evaluated <a href=\"%%FTGD_RE_EVAL%%\">please click here</a>.</p>
</div>
<div>
<form>
<input type=\"button\" value=\"Proceed\" onclick=\"document.location.href=\'%%WARNINGLINK%%\'; return false;\">
<input type=\"button\" value=\"Go Back\" onclick=\'history.go(-1); return false\'>
</form>
</div>
</div>
</body>
</html>"
set header http
set format html
end
config system replacemsg spam "ipblocklist"
set buffer "Mail from this IP address is not allowed and has been blocked."
set header none
set format text
end
config system replacemsg spam "smtp-spam-dnsbl"
set buffer "This message has been blocked because it is from a DNSBL/ORDBL IP address."
set header none
set format text
end
config system replacemsg spam "smtp-spam-feip"
set buffer "This message has been blocked because it is from a FortiGuard - AntiSpam black IP address."
set header none
set format text
end
config system replacemsg spam "smtp-spam-helo"
set buffer "This message has been blocked because the HELO/EHLO domain is invalid."
set header none
set format text
end
config system replacemsg spam "smtp-spam-emailblack"
set buffer "Mail from this email address is not allowed and has been blocked."
set header none
set format text
end
config system replacemsg spam "smtp-spam-mimeheader"
set buffer "This message has been blocked because it contains an invalid header."
set header none
set format text
end
config system replacemsg spam "reversedns"
set buffer "This message has been blocked because the return email domain is invalid."
set header none
set format text
end
config system replacemsg spam "smtp-spam-bannedword"
set buffer "This message has been blocked because it contains a banned word."
set header none
set format text
end
config system replacemsg spam "smtp-spam-ase"
set buffer "This message has been blocked because ASE reports it as spam. "
set header none
set format text
end
config system replacemsg spam "submit"
set buffer "If this email is not spam, click here to submit the signatures to FortiGuard - AntiSpam Service."
set header none
set format text
end
config system replacemsg im "im-file-xfer-block"
set buffer "Transfer failed. You are not permitted to transfer the file \"%%FILE%%\"."
set header none
set format text
end
config system replacemsg im "im-file-xfer-name"
set buffer "Transfer %%ACTION%%. The file name \"%%FILE%%\" matches the configured file name block list."
set header none
set format text
end
config system replacemsg im "im-file-xfer-infected"
set buffer "Transfer %%ACTION%%. The file \"%%FILE%%\" is infected with the virus %%VIRUS%%. File quarantined as %%QUARFILENAME%%."
set header none
set format text
end
config system replacemsg im "im-file-xfer-size"
set buffer "Transfer %%ACTION%%. The file \"%%FILE%%\" is larger than the configured limit."
set header none
set format text
end
config system replacemsg im "im-dlp"
set buffer "Transfer %%ACTION%%. The file \"%%FILE%%\" contains a data leak."
set header none
set format text
end
config system replacemsg im "im-dlp-ban"
set buffer "Transfer %%ACTION%%. The user is banned because of a detected data leak."
set header none
set format text
end
config system replacemsg im "im-voice-chat-block"
set buffer "Connection failed. You are not permitted to use voice chat."
set header none
set format text
end
config system replacemsg im "im-video-chat-block"
set buffer "Connection failed. You are not permitted to use video chat."
set header none
set format text
end
config system replacemsg im "im-photo-share-block"
set buffer "Photo sharing failed. You are not permitted to share photo."
set header none
set format text
end
config system replacemsg im "im-long-chat-block"
set buffer "Message blocked. The message is longer than the configured limit."
set header none
set format text
end
config system replacemsg alertmail "alertmail-virus"
set buffer "Virus/Worm detected: %%VIRUS%% Protocol: %%PROTOCOL%% Source IP: %%SOURCE_IP%% Destination IP: %%DEST_IP%% Email Address From: %%EMAIL_FROM%% Email Address To: %%EMAIL_TO%% %%VIRUS_REF_URL%%%%VIRUS_REF_URL%%"
set header none
set format text
end
config system replacemsg alertmail "alertmail-block"
set buffer "File Block Detected: %%FILE%% Protocol: %%PROTOCOL%% Source IP: %%SOURCE_IP%% Destination IP: %%DEST_IP%% Email Address From: %%EMAIL_FROM%% Email Address To: %%EMAIL_TO%% "
set header none
set format text
end
config system replacemsg alertmail "alertmail-nids-event"
set buffer "The following intrusion was observed: %%NIDS_EVENT%%."
set header none
set format text
end
config system replacemsg alertmail "alertmail-crit-event"
set buffer "The following critical firewall event was detected: %%CRITICAL_EVENT%%."
set header none
set format text
end
config system replacemsg alertmail "alertmail-disk-full"
set buffer "The log disk is Full."
set header none
set format text
end
config system replacemsg admin "admin-disclaimer-text"
set buffer "W A R N I N G W A R N I N G W A R N I N G W A R N I N G
This is a private computer system. Unauthorized access or use
is prohibited and subject to prosecution and/or disciplinary
action. All use of this system constitutes consent to
monitoring at all times and users are not entitled to any
expectation of privacy. If monitoring reveals possible evidence
of violation of criminal statutes, this evidence and any other
related information, including identification information about
the user, may be provided to law enforcement officials.
If monitoring reveals violations of security regulations or
unauthorized use, employees who violate security regulations or
make unauthorized use of this system are subject to appropriate
disciplinary action.
W A R N I N G W A R N I N G W A R N I N G W A R N I N G
"
set header none
set format text
end
config system replacemsg auth "auth-disclaimer-page-1"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}form{display:block;background:#ccc;border:2px solid red;padding:0 0 25px 0;width:500px;font-family:helvetica,sans-serif;font-size:14px;margin:10px auto;}.fel,.fer,.fec{text-align:center;width:350px;margin:0 auto;padding:10px;}.fel{text-align:left;}.fer{text-align:right;}h1{font-weight:bold;font-size:21px;margin:0;padding:20px 10px;text-align:center;}p{margin:15px auto;width:75%;text-align:left;}ul{margin:15px auto;width:75%;}h2{margin:25px 10px;font-weight:bold;text-align:center;}label,h2{font-size:16px;}.logo{background:#eee center 25px url(%%IMAGE:logo_fw_auth%%) no-repeat;padding-top:80px;}</style><title>Firewall Disclaimer</title></head><body><div class=\"oc\"><div class=\"ic\"><form action=\"/\" method=\"post\"><input type=\"hidden\" name=\"%%REDIRID%%\" value= \"%%PROTURI%%\"><input type=\"hidden\" name=\"%%MAGICID%%\" value=\"%%MAGICVAL%%\"><input type=\"hidden\" name=\"%%ANSWERID%%\" value=\"%%DECLINEVAL%%\"><h1 class=\"logo\">Terms and Disclaimer Agreement</h1><p>You are about to access Internet content that is not under the control of the network access provider. The network access provider is therefore not responsible for any of these sites, their content or their privacy policies. The network access provider and its staff do not endorse nor make any representations about these sites, or any information, software or other products or materials found there, or any results that may be obtained from using them. If you decide to access any Internet content, you do this entirely at your own risk and you are responsible for ensuring that any accessed material does not infringe the laws governing, but not exhaustively covering, copyright, trademarks, pornography, or any other material which is slanderous, defamatory or might cause offence in any other way.</p><h2>Do you agree to the above terms?</h2><div class=\"fec\"><input type=\"submit\" value= \"Yes, I agree\" onclick=\"sb(\'%%AGREEVAL%%\')\"><input type=\"submit\" value= \"No, I decline\" onclick=\"sb(\'%%DECLINEVAL%%\')\"></div></form></div></div><script>function sb(val) { document.forms[0].%%ANSWERID%%.value = val; document.forms[0].submit(); }</script></body></html>"
set header http
set format html
end
config system replacemsg auth "auth-disclaimer-page-2"
set buffer ''
set header http
set format html
end
config system replacemsg auth "auth-disclaimer-page-3"
set buffer ''
set header http
set format html
end
config system replacemsg auth "auth-reject-page"
set buffer "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01//EN\">
<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\"><style type=\"text/css\">html,body{height:100%;padding:0;margin:0;}.oc{display:table;width:100%;height:100%;}.ic{display:table-cell;vertical-align:middle;height:100%;}form{display:block;background:#ccc;border:2px solid red;padding:0 0 25px 0;width:500px;font-family:helvetica,sans-serif;font-size:14px;margin:10px auto;}.fel,.fer,.fec{text-align:center;width:350px;margin:0 auto;padding:10px;}.fel{text-align:left;}.fer{text-align:right;}h1{font-weight:bold;font-size:21px;margin:0;padding:20px 10px;text-align:center;}p{margin:15px auto;width:75%;text-align:left;}ul{margin:15px auto;width:75%;}h2{margin:25px 10px;font-weight:bold;text-align:center;}label,h2{font-size:16px;}.logo{background:#eee center 25px url(%%IMAGE:logo_fw_auth%%) no-repeat;padding-top:80px;}</style><title>Firewall Disclaimer Declined</title>&a
修复方案:
升级补丁
版权声明:转载请注明来源 路人甲@乌云
漏洞回应
厂商回应:
危害等级:无影响厂商忽略
忽略时间:2016-02-22 18:00
厂商回复:
已將事件通知有關機構
漏洞Rank:13 (WooYun评价)
最新状态:
暂无