Re: [fw-wiz] Discretionary WiFi Access
From: Jim Seymour (jseymour_at_linxnet.com)
To: firstname.lastname@example.org Date: Thu, 21 Jul 2005 14:39:10 -0400 (EDT)
"Paul D. Robertson" <email@example.com> wrote:
> On Fri, 8 Jul 2005, Josh Welch wrote:
> > I have setup an access point outside of our firewall for this express
> > purpose. It is wide open and I simply monitor port usage to keep an eye
> > out for any abuse, it hasn't been an issue so far.
> Isn't this kind of SBCYF?
"Kind of?" ;)
Another thing, which I haven't seen discussed: It seems probable that
the access in question would naturally be less restricted than what's
normally allowed by ones corporate firewall, yeah? (Well, unless one
has killed their firewall  ;).) E.g.: Perhaps SMTP, POP3, IMAP, Net
Meeting (*barf*), etc., unfiltered. You'll want some way to keep
employees with wireless capability from accessing your insecure
courtesy WLAN--particularly whilst they're connected to your secured
LAN (router, anybody?).
I think it should be unnecessary point point out that some employees
will inevitably try, and the multitude of dangers should they not be
prohibited from succeeding.
 Ref: "The Death Of A Firewall"
-- Note: My mail server employs *very* aggressive anti-spam filtering. If you reply to this email and your email is rejected, please accept my apologies and let me know via my web form at <http://jimsun.linxnet.com/scform.php>. _______________________________________________ firewall-wizards mailing list firstname.lastname@example.org http://honor.icsalabs.com/mailman/listinfo/firewall-wizards