What are risks of not setting a time limit for VPN sessions to a network?|||The two that I can think of are:
1) If a client disconnects improperly, (and assuming no hello/flush timers are being used) the server will maintain state for sessions that are no longer in use.
2) The encryption that is negotiated upon set up may be broken by brute force. If a time limit is added, then this won't be a viable method for crackers to try.|||u'll be not be able to determine when session starts and when it ends and also without time u may know at wat particular time its timing out......
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment