Jump to content
Welcome to our new Citrix community!

Netscaler sessions duration


M C1709163001

Recommended Posts

After the recent CVE-2023-4966 we deployed last week i just want to double check some thing.

 

According to https://thehackernews.com/2023/10/critical-citrix-netscaler-flaw.html;

"These sessions may persist after the update to mitigate CVE-2023-4966 has been deployed."

How do i check the duration of all current ICA/VPN sessions in the netscaler?

 

Active user sessions doesnt show any extra information about the duration in the netscaler. Also in the CLI 'show aaa session' doesnt give this info.

I dont want to kick out hundreds of users during work hours. Just check if sessions are active before we upgraded.

Link to comment
Share on other sites

Well, if it's a standalone Netscaler, when you apply the update, the Netscaler reboots - I would think that would clear the connections, and force re-authentication... So I'm wondering how the sessions are persisting...  My bigger concern is what the signs of compromise actually are...  I've yet to find them posted anywhere - mind you I've only been looking for a short time.

 

dcc

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...