Security Basics mailing list archives

Re: Home laptops on a corporate network

From: "Ryan Chow" <chowchowryan () gmail com>
Date: Wed, 9 May 2007 09:17:21 +0800

I'd give it the thumbs down. security is a big problem I feel. but I wouldlet your client know of the security threats that they will face first.because liability is an important thing also. if they do insist on going onwith the project then it's a risk they are taking themselves.

----- Original Message -----From: "Adam Rosen" <ajrosen () buffdata com>

To: "Tsu" <tsudohnimh () gmail com>
Cc: <security-basics () securityfocus com>
Sent: Wednesday, May 09, 2007 1:30 AM
Subject: RE: Home laptops on a corporate network

A vpn will allow authentication, but then they still are accessing fileshares from a system that may be thouroughly infected. Then we have issuessuch as file corruption/deletion/infectionor data leakage due to keyloggers,trojans, and P2P apps. A VPN (ssl or otherwise) won't change this.

Adam

-----Original Message-----
From: "Tsu" <tsudohnimh () gmail com>
Sent: Tuesday, May 08, 2007 12:43 PM
To: "Adam Rosen" <ajrosen () buffdata com>
Cc: "security-basics () securityfocus com" <security-basics () securityfocus com>
Subject: Re: Home laptops on a corporate network

SSL VPN Appliance like the one from Watchguard.
http://www.watchguard.com/products/fb-ssl.asp

Very easy to setup, easy to use, LDAP integration... good stuff. I've
implemented several of them for clients.

On 5/8/07, Adam Rosen <ajrosen () buffdata com> wrote:

Hi all -

I have a client who wants to allow employees to use their own laptops on
the corp. wireless network so that they can access files on the server.
I gave them a run-down of options (allow usual file sharing [bad idea],
MS VPN quarantine [complex scripting], SharePoint services [not bad, but
no printer access] and third party quarantine options).

Aside from any other ideas someone may have, it seems to me that the
third party compliance software/appliance, while probably being the most
versatile is pretty costly. I found a couple starting at about $20K.
Does anybody know of any devices that are significantly cheaper and can
allow my client to do what they want? I should mention that they are
bound by HIPAA regulations here. Or any approaches I haven't thought of?

Thanks for the input.

Adam

Adam J. Rosen
President
Buffalo Data Solutions
716-913-6312
ajrosen () buffdata com
http://www.buffdata.com




--
tsudohnimh

www.knowthenetwork.com

Current thread:

Re: Home laptops on a corporate network, (continued)
- - Re: Home laptops on a corporate network Yousef Syed (May 09)
    - RE: Home laptops on a corporate network Adam Rosen (May 09)
    - Re: Home laptops on a corporate network gjgowey (May 09)
    - RE: Home laptops on a corporate network Petter Bruland (May 09)
    - RE: Home laptops on a corporate network Crawley, Jim (May 09)
    - Re: Home laptops on a corporate network Rob Creely (May 10)
    - Message not available
    - Re: Home laptops on a corporate network Johnny Wong (May 09)
    - RE: [bugtraq] Re: Home laptops on a corporate network mathew_ericson (May 10)
    - RE: [bugtraq] Re: Home laptops on a corporate network winsoc (May 10)
- RE: Home laptops on a corporate network Adam Rosen (May 08)
  - Re: Home laptops on a corporate network Ryan Chow (May 09)
- Home laptops on a corporate network Adam Rosen (May 08)
  - Re: Home laptops on a corporate network Tsu (May 08)
  - Re: Home laptops on a corporate network Kurt Buff (May 08)
    - RE: Home laptops on a corporate network steven hess (May 08)
  - RE: Home laptops on a corporate network jbeauford (May 08)
  - RE: Home laptops on a corporate network Vince Hall (May 09)
- RE: Home laptops on a corporate network Adam Rosen (May 08)
  - Message not available
    - Re: Home laptops on a corporate network Kurt Buff (May 09)
- Re: Home laptops on a corporate network Kurt Buff (May 08)
- RE: Home laptops on a corporate network Al Saenz (May 08)

(Thread continues...)