Security Basics mailing list archives
RE: How can I deny VPN access based on Virus DAT
From: "Corey Watts-Jones" <cwattsjones () rogers com>
Date: Fri, 6 Jan 2006 08:16:58 -0500
My understanding of the best way to go about this would be to allow the VPN connection but not allow access to network resources until the user clears a network quarantine (AV defs, patches, etc). As far as implementation or actual devices go, I'm only familiar with some of the Symantec h/ware appliances for this. Corey Watts-Jones Systems Support Specialist BIT Incorporated -----Original Message----- From: Ansgar -59cobalt- Wiechers [mailto:bugtraq () planetcobalt net] Sent: Thursday, January 05, 2006 1:32 PM To: security-basics () securityfocus com Subject: Re: How can I deny VPN access based on Virus DAT On 2006-01-03 Nick Duda wrote:
Can anyone explain the different products and/or procedures in using a VPN device for telecommuters with the ability to deny VPN access if they dona?Tt have Antivirus or their Antivirus DAT's are not up to date.
How are you going to verify that without already establishing the VPN? Do you want to rely on the client telling you "yep, ev'rything's just fine"? Why would $MALWARE refrain from forging that claim? Regards Ansgar Wiechers -- "All vulnerabilities deserve a public fear period prior to patches becoming available." --Jason Coombs on Bugtraq --------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------- --------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations. http://www.msia.norwich.edu/secfocus ----------------------------------------------------------------------------
Current thread:
- How can I deny VPN access based on Virus DAT Nick Duda (Jan 04)
- RE: How can I deny VPN access based on Virus DAT Michael Wright (Jan 04)
- Message not available
- Re: How can I deny VPN access based on Virus DAT Mario Platt (Jan 05)
- Message not available
- RE: How can I deny VPN access based on Virus DAT Michael Wright (Jan 04)
- Re: How can I deny VPN access based on Virus DAT Ansgar -59cobalt- Wiechers (Jan 05)
- Re: How can I deny VPN access based on Virus DAT Mario Platt (Jan 06)
- RE: How can I deny VPN access based on Virus DAT Corey Watts-Jones (Jan 06)
- Re: How can I deny VPN access based on Virus DAT Ivan . (Jan 09)