Security Basics mailing list archives
RE: Windows Active Directory Domains
From: "Ocala Website Designs LLC" <webmaster () ocaladesigns com>
Date: Wed, 9 Jul 2014 12:56:21 -0400
Tell you the truth, if the HR department has HIPPA information, or information that is very sensitive, they should hire someone that does know what they are doing. No offense, but a security breach is a bad way to find out you failed at securing your HR data. I agree, keep it simple, use a single domain, leverage NTFS permissions and vlans properly. Thank you, Tommy Thomas, MCP, Network+, Security+, C|EH, MCSE Network Systems Administrator -::- Webmaster Public Affairs Specialist - :: - Photojournalist Ocala Website Designs LLC www.OcalaWebsiteDesigns.com President - Ocala Outreach Foundation Inc. www.OcalaOutreach.com -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Will Boling Sent: Wednesday, July 9, 2014 9:56 AM To: joeb1kenobe () gmail com Cc: security-basics () securityfocus com Subject: Re: Windows Active Directory Domains Joe, I see very, very little benefit in separating the domains. Honestly, it sounds like an excuse to not setup share permissions and other things correctly within a shared domain. From a management perspective, I could see this being a huge pain. I would recommend having them consolidate the domain into one and having someone help them with permissions and object security within the domain. Could they not utilize ACLs and VLANs on switches to provide the level of security they're trying to use the firewall for? Thank you, Will On Jul 8, 2014, at 4:48 PM, joeb1kenobe () gmail com wrote:
I have a scenario where I am trying to evaluate the security benefits of
an Active Directory domain structure.
We will call the company XYX Inc. They have an AD Forest/Domain for
general users. They also have a separate AD Forest/Domain for their HR Users that is behind a firewall.
The claim is that the separate forests with a one way trust provides the
necessary security to protect the HR Information.
My thinking is that having the users/servers in the same forest would
provide additional benefit of ease of use for the technical team. Using the already existing firewall, separate the servers behind the firewall for the needed protection of HR files.
Before I make a recommendation of one way or the other, I wanted to elicit
the ideas of others who may have seen similar situations.
Thanks Joe Brown ---------------------------------------------------------------------- -- Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be4 42f727d1 ---------------------------------------------------------------------- --
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727 d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Windows Active Directory Domains joeb1kenobe (Jul 09)
- RE: Windows Active Directory Domains Chris Wessells (Jul 09)
- Re: Windows Active Directory Domains Will Boling (Jul 09)
- RE: Windows Active Directory Domains Ocala Website Designs LLC (Jul 09)
- RE: Windows Active Directory Domains Michael Sturtz (Jul 09)
- Re: Windows Active Directory Domains Kurt Buff (Jul 09)
- RE: Windows Active Directory Domains Mikhail A. Utin (Jul 14)
- Re: Windows Active Directory Domains Kurt Buff (Jul 14)
- RE: Windows Active Directory Domains Mikhail A. Utin (Jul 14)
- Re: Windows Active Directory Domains Tracy Reed (Jul 15)
- Re: Windows Active Directory Domains Tracy Reed (Jul 22)
- Re: Windows Active Directory Domains Kurt Buff (Jul 22)
- RE: Windows Active Directory Domains Mikhail A. Utin (Jul 14)