Full Disclosure mailing list archives

Re: CISCO Vpn

From: Valdis.Kletnieks () vt edu
Date: Wed, 23 Jun 2004 13:37:25 -0400

On Wed, 23 Jun 2004 10:51:52 CDT, Ron DuFresne said:

The main problem with a vpn tunnel for workers from home is keeping them
from messing with the system and changing the defaults estblished, and
making sure the security policy on the machine remain as hig as the policy
for the corp network.  Things like having the AV sigs up to date, no split
tunneling such that the user can irc while tunneled back into work, etc.
The main risk is in providing nothing more then a secure tunel for all the
home users nasties to travel back into the corp network.  It's estimated
that at least 75% of vpn's in place for this kind of use are nothing more
then that.


And remember - even the Director of the CIA didn't get this one right... ;)

Attachment: _bin
Description:

Current thread:

CISCO Vpn Patrick Olsen (Jun 23)
- Re: CISCO Vpn Ron DuFresne (Jun 23)
  - Re: CISCO Vpn Harlan Carvey (Jun 23)
    - Re: CISCO Vpn Ron DuFresne (Jun 23)
  - Re: CISCO Vpn Valdis . Kletnieks (Jun 23)
- Re: CISCO Vpn Shannon Johnston (Jun 23)
  - RE: CISCO Vpn Bryan K. Watson (Jun 23)
    - RE: CISCO Vpn Matt Wagenknecht (Jun 23)
- Re: CISCO Vpn Chris Adams (Jun 23)
- <Possible follow-ups>
- Re: CISCO Vpn dila (Jun 23)