[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] CISCO Vpn



On Wed, 23 Jun 2004 10:51:52 CDT, Ron DuFresne said:

> The main problem with a vpn tunnel for workers from home is keeping them
> from messing with the system and changing the defaults estblished, and
> making sure the security policy on the machine remain as hig as the policy
> for the corp network.  Things like having the AV sigs up to date, no split
> tunneling such that the user can irc while tunneled back into work, etc.
> The main risk is in providing nothing more then a secure tunel for all the
> home users nasties to travel back into the corp network.  It's estimated
> that at least 75% of vpn's in place for this kind of use are nothing more
> then that.

And remember - even the Director of the CIA didn't get this one right... ;)

Attachment: pgp00066.pgp
Description: PGP signature