RE: Home laptops on a corporate network

["Adam Rosen" <ajrosen () buffdata com>]

3 to 5 simultaneous users, but an unknown number of unique users (which is something that will need to be nailed down 
in order to license some per user license solution).

Adam

-----Original Message-----
From:   "Al Saenz" <asaenz () Found-Tech com>
Sent:   Tuesday, May 08, 2007 3:44 PM
To:     "Adam Rosen" <ajrosen () buffdata com>, "Tsu" <tsudohnimh () gmail com>
Cc:     "security-basics () securityfocus com" <security-basics () securityfocus com>
Subject:        RE: Home laptops on a corporate network

Hi Adam,

How many remote clients connections will be required for your customer?

Thanks
Al

-----Original Message-----
From: listbounce () securityfocus com
[mailto:listbounce () securityfocus com]On Behalf Of Adam Rosen
Sent: Tuesday, May 08, 2007 1:31 PM
To: Tsu
Cc: security-basics () securityfocus com
Subject: RE: Home laptops on a corporate network


A vpn will allow authentication, but then they still are accessing file shares from a system that may be thouroughly 
infected. Then we have issues such as file corruption/deletion/infectionor data leakage due to keyloggers, trojans, and 
P2P apps. A VPN (ssl or otherwise) won't change this.

Adam 

-----Original Message-----
From:   "Tsu" <tsudohnimh () gmail com>
Sent:   Tuesday, May 08, 2007 12:43 PM
To:     "Adam Rosen" <ajrosen () buffdata com>
Cc:     "security-basics () securityfocus com" <security-basics () securityfocus com>
Subject:        Re: Home laptops on a corporate network

SSL VPN Appliance like the one from Watchguard.
http://www.watchguard.com/products/fb-ssl.asp

Very easy to setup, easy to use, LDAP integration... good stuff. I've
implemented several of them for clients.

On 5/8/07, Adam Rosen <ajrosen () buffdata com> wrote:
> Hi all -
>
> I have a client who wants to allow employees to use their own laptops on
> the corp. wireless network so that they can access files on the server.
> I gave them a run-down of options (allow usual file sharing [bad idea],
> MS VPN quarantine [complex scripting], SharePoint services [not bad, but
> no printer access] and third party quarantine options).
>
> Aside from any other ideas someone may have, it seems to me that the
> third party compliance software/appliance, while probably being the most
> versatile is pretty costly. I found a couple starting at about $20K.
> Does anybody know of any devices that are significantly cheaper and can
> allow my client to do what they want? I should mention that they are
> bound by HIPAA regulations here. Or any approaches I haven't thought of?
>
> Thanks for the input.
>
> Adam
>
> Adam J. Rosen
> President
> Buffalo Data Solutions
> 716-913-6312
> ajrosen () buffdata com
> http://www.buffdata.com



-- 
tsudohnimh
www.knowthenetwork.com