Re: [Full-Disclosure] CISCO Vpn

On Wed, 23 Jun 2004 10:51:52 CDT, Ron DuFresne said:

> The main problem with a vpn tunnel for workers from home is keeping them
> from messing with the system and changing the defaults estblished, and
> making sure the security policy on the machine remain as hig as the policy
> for the corp network. Things like having the AV sigs up to date, no split
> tunneling such that the user can irc while tunneled back into work, etc.
> The main risk is in providing nothing more then a secure tunel for all the
> home users nasties to travel back into the corp network. It's estimated
> that at least 75% of vpn's in place for this kind of use are nothing more
> then that.

And remember - even the Director of the CIA didn't get this one right... ;)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html