-----BEGIN PGP SIGNED MESSAGE-----
They are probably using the modems for one of two reasons.
1. speed, with 300 users what type of performance do you get from your frame
relay?
2. access to otherwise blocked stuff. not knowing your security I can't guess if
this applys or not.
If they are using the modems for reason two, you need to either accept that they
need the services and allow them through or convince them the services are not
needed.
if they are using modems for speed reasons you can easily convince them to stop
using them by upping the speed of your company connection.
David lang
On Mon, 2 Mar 1998, Martin Hepworth wrote:
> Date: Mon, 2 Mar 1998 08:38:49 -0000
> From: Martin Hepworth <martin .
hepworth @
blackwell .
co .
uk>
> To: 'Ken Simmons' <simmonsk @
groupz .
net>,
> 'Henry Hertz Hobbit' <hhhobbit @
icarus .
weber .
edu>, klinec @
mapcoinc .
com
> Cc: Firewalls @
GreatCircle .
COM
> Subject: RE: Dial-up security breach?
>
>
> No to mention the 'bad guys' have an untraceable path into your
> organisation. This attack is the one Citibank endured a few years ago
> and since went for two factor authentication.
>
> Think of the situation in terms of physical security. You lock the front
> door, put a guard on it and check everyone as the come in. BUT the
> employees find it easier to get to/from the car park via the emergency
> exit and so leave that door wide open!!!!
>
> Martin Hepworth
> Blackwell's Information Services
> Tel: +44 1865 792 792 X3233
>
> 1st Rule of Computer Security
> WYDSIWGY: What You Don't See is What Gets You
>
> > -----Original Message-----
> > From: Ken Simmons [SMTP:simmonsk @
groupz .
net]
> > Sent: Monday, March 02, 1998 2:49 AM
> > To: 'Henry Hertz Hobbit'; klinec @
mapcoinc .
com
> > Cc: Firewalls @
GreatCircle .
COM
> > Subject: RE: Dial-up security breach?
> >
> > Oh Joy!
> > Now your employees have an untraceable path for sending company
> > files and other proprietary information.
> >
> > On Saturday, February 28, 1998 7:39 PM, Henry Hertz Hobbit
> > [SMTP:hhhobbit @
icarus .
weber .
edu] wrote:
> > > On Fri, 27 Feb 1998 klinec @
mapcoinc .
com wrote:
> > >
> > > > This is a little off-topic, but I thought I would try it anyway.
> > > >
> > > > We provide Internet access to 300 users enterprise-wide through
> > > > our frame-relay WAN connections and our firewall at our corporate
> > > > headquarters. Some users have decided to go out and get accounts
> > > > with local ISPs and have dial-up connections in Windows95 or
> > > > Windows NT to these ISPs.
>
-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.0
Charset: noconv
iQEVAwUBNPr4Sz7msCGEppcbAQFMAgf+Kv70t+WXRS9yRN3hhg7nxmxf+G0eG4AN
iFqqQHkQfbLViujfq+V46pGjyCuG977jLIUNMio1jAVbBDVQbmtz4awTWSx5afFT
gxzP/0VDf/qPkm/FbeZYUP4sGXb31ffIROgkFguLZg4TYcPcL068dWo8uiEHTsnn
Djoa36JmqvzFzfR4ZNNvTf8ZSZRdjl1/p51/MpY5tkzC0x/32lWSVjN39fI0F6YL
TTMW6uxhwYJNkLQCoAEPWa9yL2DU8D3RPlaTCgtYhRts53TI2q7J4sY0ced9P/6j
RSdu+cUNN5Zfr8ofbnz5DXKWid8MDldNTkDBz6FhDQpysgjjPr+uQw==
=vC+G
-----END PGP SIGNATURE-----
References:
|
|
