Firewall Wizards mailing list archives
RE: risk level associated with VPNs?
From: "Paul D. Robertson" <paul () compuwar net>
Date: Fri, 11 Feb 2005 19:32:09 -0500 (EST)
On Mon, 7 Feb 2005, Desai, Ashish wrote:
Employees (developers) running unpatched SQL Server got hit when they connected their laptops to the Internet from home.
It also happened when they walked in the door with their hibernated laptop.
in the internal networks but never got the courage to shut them down.
They didn't' have a mechanism prepared to do so.
Afer learning the hard way, now companies are getting smarter and shutting down internal ports if they detect via a network scan that you have unpatched software. The problem with big companies is that its hard to notify the owner when they shut off the internal network port as the asset tracking systems are not good and they don't know the human owner at the end of an internal company
That's easily solvable with DHCP in a different network range and a kiosk system like they have in Hotel rooms. Paul ----------------------------------------------------------------------------- Paul D. Robertson "My statements in this message are personal opinions paul () compuwar net which may have no basis whatsoever in fact." _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- risk level associated with VPNs? Avishai Wool (Feb 05)
- Re: risk level associated with VPNs? Marcus J. Ranum (Feb 06)
- RE: risk level associated with VPNs? Bruce Smith (Feb 06)
- Re: risk level associated with VPNs? R. DuFresne (Feb 06)
- Re: risk level associated with VPNs? Paul D. Robertson (Feb 06)
- Re: risk level associated with VPNs? hermit921 (Feb 11)
- <Possible follow-ups>
- RE: risk level associated with VPNs? rlmieth (Feb 06)
- Re: risk level associated with VPNs? Shimon Silberschlag (Feb 11)
- RE: risk level associated with VPNs? Desai, Ashish (Feb 11)
- RE: risk level associated with VPNs? Paul D. Robertson (Feb 11)
- RE: risk level associated with VPNs? Michael Surkan (Feb 11)
- RE: risk level associated with VPNs? Paul D. Robertson (Feb 11)
- RE: risk level associated with VPNs? Richards, Jim (Feb 11)