Re: secure sharepoint 2010 design

[Brent Gardner <brent.gardner () gmail com>]

Paul Johnston wrote:
> Hi,
>
> The question I would ask is: do existing similar systems in your company
> have a dedicated, firewalled network?
>
> I think you'll find that somewhat more critical systems (e.g. your
> domain controllers) currently sit on the same network as all your
> workstations. While there is a security benefit in firewalling
> sharepoint, it's a bit moot if more critical systems are not firewalled.
>
> Paul
>
>   
I mean no disrespect to you personally, Paul, but I see this type of 
logic pop up from time to time and it really bothers me.  It seems to 
break down to: "I or someone else has done something wrong with the 
network, therefore why try to do anything right?"

What if the DC's aren't under his control?  What if they are, but 
weren't when they were set up?

What if this is a starting point for improving things on the network?

Why aim low?  Aim high, and if you fall short you're still likely to be 
better off than aiming low.

As IT professionals we should seek to implement best practices, improve 
our craft, strive for excellence, use our powers for good, etc., etc.


Brent Gardner




------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------