Re: web browsing in production environment - a journey through comfort and security

[stcroix111 () netscape net]

What lead you to the browsing environment that you are currently using? Is it regulatory compliance? Do you have 
management buy-in? It sounds like the users are frustrated and that management is requesting a review of the current 
architecture. Using Citrix helps to sandbox/virtualize/isolate the IE session from the desktop. I would use this to my 
advantage and configure the IE settings to be secure as possible and would not save any user settings including the 
user's session. Each time the user accesses IE, he or she would always start with your default configuration. I would 
firewall off the Citrix farm as much as possible so that any malicious code that a user may download is isolated from 
the rest of the LAN. This would allow you to loosen some of the security controls that you have in place around active 
content while not increasing your security risk significantly. Hope this helps.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------