Security Basics mailing list archives
Re: Thin-clients: THE Solution to the Security problem
From: Saqib Ali <docbook.xml () gmail com>
Date: Wed, 31 Aug 2005 17:11:52 -0700
answer to your question is not easy. and it will depend on the type of organization in question. Maybe you can start by serving inidividual application using Citrix, instead of the whole desktop. This way you can measure user's feedback. Click here for similar discussion on Slashdot < http://slashdot.org/article.pl?sid=04/12/28/2212243 > Start by publishing Internet Explorer on Citrix, and require your users to use it from Citrix instead of their local copy of IE. Lock down IE, and use anonymous accounts for Internet Explorer. This way you can lock down the IE to your heart's desire. Also publishing IE 'anonymously' on Citrix will further secure the environment, as the anonymous profiles can be deleted on a nightly basis. However one issue with 'anonymous' access to Citrix applications, is that the user can not maintain their preference or even their bookmarks.
Now if we replace all of these PCs with thin-clients, whereby they will access servers (may be Terminal Servers) to get their mails, get Web access, does it not eliminate the potentially large pool of 'vulnerable' machines, and hence greatly decrease the Risk Exposure of an organisation's network? Is this the solution to manage Security more effectively?
-- In Peace, Saqib Ali http://www.xml-dev.com/blog/ Consensus is good, but informed dictatorship is better.
Current thread:
- Thin-clients: THE Solution to the Security problem sf_mail_sbm (Aug 31)
- Re: Thin-clients: THE Solution to the Security problem Saqib Ali (Aug 31)