Russ, you are missing something - but - it was not explicitly stated
in the orginal posting. The access to the BigCo network is, er was,
already there.
Two Windows NT servers in the basement control a small printing press. Both
NT machines have dial-up lines and guest accounts. They were originally
stand alone machine not connected to the corporate network. Someone wanted
to read e-mail and plugged them into the LAN. Subsequently a war dialler
found the two NT machines and guests arrived. The guests had sufficient
knowledge to steal a copy of the entire cc:Mail post office and crack
the Admin password in a machine offsite. Don't panic. We told BigCo.
we saw a problem. After the first "That's impossible" they checked. Then
they unplugged the Windows NT servers from their LAN.
It was this background that prompted me to ask about adding something to a
firewall that would provide authentication services. Not all their users
use cc:Mail. Some use Unix mail and some use pop3. The common point of
interconnection is the inside of the firwall.
PoT_LiCkEr
-= Electronic Shrine of Our Lady of the Immaculate Packet =-
-= Church of the Dead Meow & First Church of the Gooey Death =-
|
|
