RE: ADT enterNET and Symantec Ghost

["Huston, Matt" <mhuston () imagitekltd com>]

John, I had the very same problem about a month ago. The irony is that the
multicast server is behind an ADT protected door to our server room, thereby
disallowing us to get in and remedying the problem until after the ghost
session ended. I noticed the exact instance and was suspicious, but did not
continue or investigate further. (we don't push images very frequently)
Thanks for the verification. Other than the recommendations you provide
below, have you heard any advice or comments from either vendors? Thanks
again for the confirmation. Regards, M

-----Original Message-----
From: John Swensson [mailto:jswensson () integres com]
Sent: Thursday, May 02, 2002 12:04 PM
To: vuln-dev () securityfocus com
Subject: ADT enterNET and Symantec Ghost


from their websites: 
http://www.adt.com/enterNET/
enterNET(tm) is ADT's exclusive web server-based, full-featured Access
Control and Alarm Monitoring System. There's no software to load: this
application works over your network Internet connection, through your
regular web browser! And through this simple connection, you can both
monitor and reprogram your security system on any Internet-equipped network
(LAN or WAN) computer. enterNET(tm): 

Symantec Ghost Multicast Server
http://enterprisesecurity.symantec.com/products/products.cfm?productID=3


Both good products, both products I use.

I ran into a weird little problem when using both products at once. It seems
that using the multicast function in Ghost will cause the ADT product to
stop responding and prevent users from using their keycards to access the
building! Now this can be solved by either using Symantec's Unicast or
Subnet targeted broadcast or just leaving enterNET off your network. I was
wondering if anyone has ran into this problem before?


-john


John Swensson
jswensson () integres com