RE: Survey: Chat and IM

[Fred Hoot <FredH () elibrium com>]

Hi Tony,

We have outlawed all instant messaging products and purchased a private
messaging software (Active Messenger).  It is internal and can be accessed
via our VPN connections between offices.

People bitched, but with top management support, we were able to follow
through.  It IS interesting that we received this support immediately after
someone executed an attachment they received via AIM and hosed their system.

Fred Hoot

Dir., Information Systems & Automation
Elibrium, Inc.

-----Original Message-----
From: tony toni [mailto:tony572001 () hotmail com]
Sent: Thursday, November 21, 2002 1:03 PM
To: security-basics () securityfocus com
Subject: Survey: Chat and IM



Hi,

We currently are allowing web based chat and instant messaging.  I know that

there are lots of security issues involved with its usage.  The IT folks are

telling me that it is a common practice in the industry.  I have a hard time

believing this and this is one battle I would like to take on.

QUESTION:  DOES YOUR COMPANY ALLOW WEB BASED CHAT AND INSTANT MESSAGING?  If

this was a battle you fought, could you please give me some ideas on how you

won the battle.  Any good articles/white papers that could support my 
position?


Toni CISSP, CPA
Security Services
NW Mutural Banking LTD




_________________________________________________________________
Help STOP SPAM with the new MSN 8 and get 2 months FREE*  
http://join.msn.com/?page=features/junkmail