You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The check for "Check if authentication certificate templates allow users to control the subject" is valued with just 15 points, but might result in a straight domain takeover from any normal user using certipy/certify. Compared to many other checks, I would give that more points, e.g. 50.
The text was updated successfully, but these errors were encountered:
Another check which should give more points is missing signing as that also helps mitigate all those coercion + relay attacks. The text mostly mentions MITM attacks.
The check for "Check if authentication certificate templates allow users to control the subject" is valued with just 15 points, but might result in a straight domain takeover from any normal user using certipy/certify. Compared to many other checks, I would give that more points, e.g. 50.
The text was updated successfully, but these errors were encountered: