funsec mailing list archives

RE: Security Fears Prod Many Firms To Limit StaffUseofWebServices

From: "D'Aloisio, Marc" <Marc.DAloisio () ct gov>
Date: Thu, 30 Mar 2006 15:33:03 -0500

In that instance, we did in fact block IM at that enterprise, and also
put up a secure messaging platform fo all to use.  We also set policy
against sending corporate data over public networks unencrypted.

Marc D'Aloisio, CISSP 
Network Security Analyst; Security Incident Response 
State of Connecticut - Department of Information Technology 


-----Original Message-----
From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org]
On Behalf Of Larry Seltzer
Sent: Thursday, March 30, 2006 10:58 AM
To: funsec () linuxbox org
Subject: RE: [funsec] Security Fears Prod Many Firms To Limit
StaffUseofWebServices

a group of consultants working on a project was using public IM to 
discuss

sensitive details of the project, including passing privileged
credentials (userids and passwords). 

This doesn't strike me as an IM issue. If you shut off IM surely they'll
use some other channel. 


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

RE: Security Fears Prod Many Firms To Limit StaffUseofWebServices D'Aloisio, Marc (Mar 30)