[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] "MS Blast" Win2000 Patch Download

To: <misiu_@gmx.de>, "Brad Bemis" <Brad.Bemis@airborne.com>, <full-disclosure@lists.netsys.com>
Subject: Re: [Full-Disclosure] "MS Blast" Win2000 Patch Download
From: "Jeremiah Cornelius" <jeremiah@nur.net>
Date: Thu, 14 Aug 2003 16:49:36 -0700

> Word UP!
>
> We have people surfing the Internet and then connecting via VPN to our
LAN.
> The only solution as far is virusscanner and a electronic software
> distribution.
> That is what I think
>

Well,

Laptops should have a stck on them, that forces a RADIUS/CHAP or xEAP
authentication to access the local network when they are brought onto a
local LAN.  Client VPN and dial-up users should also go through this
method.  Once authenticated, these connections should be diverted to a VLAN
created just for these client machines.  This VLAN would be screened from
the regular user segment (which should itself be screened from production
servers and development/test).  Access to resources here would occur through
proxies, and possibly remote terminal services.

Yeah, right.  I lnow...

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] "MS Blast" Win2000 Patch Download
  - From: "Brad Bemis" <Brad.Bemis@airborne.com>
- Re: [Full-Disclosure] "MS Blast" Win2000 Patch Download
  - From: <misiu_@gmx.de>

Prev by Date: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Next by Date: RE: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Prev by thread: Re: [Full-Disclosure] "MS Blast" Win2000 Patch Download
Next by thread: RE: [Full-Disclosure] "MS Blast" Win2000 Patch Download
Index(es):
- Date
- Thread