GIGAZINE

Let's Encrypt details changes to certificate issuance, including new certificate chains, removal of Client Authentication EKU, and shorter certificate validity periods.

Let's Encrypt has announced details of its overall policy regarding certificates issued going forward, including 'certificate chain renewal,' 'removal of TLS client authentication EKU (Enhanced Key ...
Threat Post

FortiGate VPN Default Config Allows MitM Attacks

The client’s default configuration for SSL-VPN has a certificate issue, researchers said. Default configurations of Fortinet’s FortiGate VPN appliance could open organizations to man-in-the-middle ...
Ars Technica

AnyConnect w/Certificate Authentication using SCEP

Since the Cisco VPN Client is now EOL, are investigating moving to AnyConnect. We're looking at licensing AnyConnect Essentials for our ASA-5510 failover pair (A/S). We do have a requirement for ...