Educause Security Discussion mailing list archives
Re: VPN policies.
From: Philip Webster <p.webster () QUT EDU AU>
Date: Mon, 23 Apr 2007 17:08:55 +1000
G'day Matt, Matthew Gracie wrote on 04/21/2007 03:46 AM:
Like most institutions, I'm sure, we're getting more and more requests from people who want access to on-campus resources from off-campus. Our VPN concentrator is more than up to the task, but right now, we're discussing the best set of policies to allow people access to work from home without compromising data. How are people handling this? Are users accessing VPNs with their personally owned machines at your institution? Are you mandating laptops for users who work from home? An entirely different computer that stays at the employee's house? Who pays for the Internet connection? What about other hardware (routers, APs, etc.) that they need? Is IT supplying computers for off-campus use, or is it the job of the department?
We don't provide equipment, just a VPN client. Some staff have laptops which they take home, others use their home PCs. We've also placed an IPS in between the VPN concentrator and the rest of the network, so this helps to mitigate the risk of (potentially) poorly maintained remote hosts. Cheers Phil -- Philip Webster IT Security Engineer Ph: +61 7 3138 9537 Information Technology Services Fx: +61 7 3138 2921 Queensland University of Technology Mb: 0411 653 313 (QUT: #6 6035) PGP Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x393FF3E3 Fingerprint: 0CD0 640F 35A6 A1C6 ACE3 E107 4F6C AF1A 393F F3E3
Current thread:
- VPN policies. Matthew Gracie (Apr 20)
- <Possible follow-ups>
- Re: VPN policies. Timothy J. fairlie (Apr 20)
- Re: VPN policies. Charlie Prothero (Apr 20)
- Re: VPN policies. Scholz, Greg (Apr 20)
- Re: VPN policies. Joey Rego (Apr 20)
- Re: VPN policies. Scholz, Greg (Apr 20)
- Re: VPN policies. Yandro Chavez Rubio (Apr 20)
- Re: VPN policies. Joey Rego (Apr 21)
- Re: VPN policies. Philip Webster (Apr 23)
- Re: VPN policies. Nathan W. Labadie (Apr 23)