Re: Re: Network proximity warning

[tteemu () au1 ibm com]

First you have to ask yourself, what will this achieve besides advising "bad people" that they are close to a private 
network. This is what they hunt for fun (as we all know).

My personal view on this and this is only a personal view and would depend on your company mostly, is to make the 
environment blind. Not just block connections that are not required but make them dropped so no notification is send 
out.

For your internal staff, a security policy that is up to date and shown to the staff members should cover everything 
you mentioned. There is no room for argument that a staff member wasn't aware, if all this is in a Security policy 
which is freely available on your intranet site.

Even better - include a agree/disagree notice on the policy to confirm which users have reviewed the policy.

The Security Policy would include the logging methods on the servers but you also need to remember privacy laws, access 
request methods etc etc etc.

Hope the above helps you in your task to make your network safer.

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------