Thanks, is this image a SSL-VPN server memory dump? or decrypted tcpdump from wire? if it is the latter, I am not going to be too concerned, because it takes time for the attackers to get the private key and even harder for them to intercept the communication(unless they are NSA), if it is the former, it is going to be very very scary.
It is a dump from the memory, using this script http://pastebin.com/WmxzjkXJ
My certificates where generated in the SA itself, so, I don't have the private keys to decrypt the traffic.
We revoke our wildcard certificate, but to test proposes we maintain out test box with the revoked certificate.
Now, I found Junos Pulse doesn't check if the certificated is revoked or not... just connects... without any warnings.
Network Connect, complains about it and don't allow the connection.
All browsers (FF, IE, and Chrome) didn't allow the connection to the test box.