Re[2]: Worms, Air Gaps and Responsibility

[Jean-Denis Gorin <jdgorin () computer org>]

> Paul Van Noord wrote:
>
> Is it not possible to run a script when a notebook connects to the LAN
> to check for the necessary security elements. If they are not there,
> either deny use of the LAN or lock the machine and add them before the
> user is allowed to use the LAN?

It is the purpose of 802.1X to enable authentication before the full connection 
to the LAN using un-controlled and controlled port paradigm.
The notebook might open a connection with an authentication server which 
request the security state of the notebook. 

Jean-Denis Gorin.
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards