Security Basics mailing list archives
VPN relied upon for method of encryption
From: nospam () explicatory com
Date: 2 Nov 2006 17:21:29 -0000
I have a client that is being forced to use a specific gift card service through corperate franchise presure on about 20 of his stores. This service involves bank transfers so it has to utilize a method of encryption, from what I can see their software is relying on a VPN tunnel for encryption and requires netbios to operate. With novice software publisher unable to write a client that runs on a windows box and can't provide it's own simple implementation of encryption, these clowns seem to have the keys to the palace, how would one lock this situation down? I suppose now all I need is for them to employ a hub and spoke configuration, get hit with one zero day attack and the entire corporation falls... Nice... --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- VPN relied upon for method of encryption nospam (Nov 03)
- A question about Access controls Faheem SIDDIQUI (Nov 06)
- Re: A question about Access controls Kern (Nov 10)
- Segregation of duties trivia Faheem SIDDIQUI (Nov 14)
- RE: Segregation of duties trivia David Gillett (Nov 15)
- Re: A question about Access controls Faheem SIDDIQUI (Nov 14)
- Re: A question about Access controls Kern (Nov 10)
- A question about Access controls Faheem SIDDIQUI (Nov 06)