Re: Thin-clients: THE Solution to the Security problem

[Saqib Ali <docbook.xml () gmail com>]

answer to your question is not easy. and it will depend on the type of
organization in question.

Maybe you can start by serving inidividual application using Citrix,
instead of the whole desktop. This way you can measure user's
feedback. Click here for similar discussion on Slashdot <
http://slashdot.org/article.pl?sid=04/12/28/2212243 >

Start by publishing Internet Explorer on Citrix, and require your
users to use it from Citrix instead of their local copy of IE. Lock
down IE, and use anonymous accounts for Internet Explorer. This way
you can lock down the IE to your heart's desire. Also publishing IE
'anonymously' on Citrix will further secure the environment, as the
anonymous profiles can be deleted on a nightly basis. However one
issue with 'anonymous' access to Citrix applications, is that the user
can not maintain their preference or even their bookmarks.

> Now if we replace all of these PCs with thin-clients, whereby they will access servers (may be Terminal Servers) to 
> get their mails, get Web access, does it not eliminate the potentially large pool of 'vulnerable' machines, and hence 
> greatly decrease the Risk Exposure of an organisation's network?
>
> Is this the solution to manage Security more effectively?

-- 
In Peace,
Saqib Ali
http://www.xml-dev.com/blog/
Consensus is good, but informed dictatorship is better.