Re: Accessing file server

• Previous message: Thomas Chiverton: "Re: Accessing file server"
• In reply to: Kanwar Sidhu: "Accessing file server"
• Next in thread: cschwede_at_delphi-gmbh.de: "Re: Accessing file server"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: focus-linux@securityfocus.com
Date: Tue, 9 Sep 2003 14:31:18 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday 05 Sep 2003 2:28 am, Kanwar Sidhu may quite possibly have written:
> Hi Guys,
>
> I got file server Red Hat Linux that is accessible only inside from my
> organization. I am just wondering is there any kind of secure method so
> that people can access files from the outside world without any hitch
> with security. I was thinking is there any kind of web interface method
> so that people just enter there user names & get access to files. But
> this I think this will involve running web server which I don't want to
> do. The other solution that is in my mind is VPN, but I don’t know how
> to set it up & how secure it is ? Can anybody please point me to some
> URL ? Or Is there any other solution out there ???

I'd say A VPN is probably the way to go, patcularly if you are trying to
support Window$ clients and access via the standard windows share mechanism.

There are plently of VPN products out there. Here is a short list of options:

OS/Software based VPN Server - runs on a normal PC/OS - examples are:

Linux - FreeSwan/pptp(mppe) etc etc. (can also be used for firewall via
Netfilter/IPTABLES)
CheckPoint FW-1 for Linux/windows etc which has firewall and VPN

Hardware based device (black box solution) - these are, again, usually
combined into firewall products - some examples:

Nokia/Checkpoint
Watchguard
Fortinet
Netscreen
CISCO PIX

Managed VPN from your ISP (vpn connection from client is made to ISP vpn
server, which then routes traffic directly into your leased line or similar
infrastructure) - talk to your ISP for more info.

Personally, i'd look at using an IPSEC VPN connection, which is
cyrtopgraphically secure if it is configured properly. Note that the weakest
link in the chain is most likely the security of the person laptop who is
outside the office and wanting to get files, not the VPN infrastructure
itself.

Do you run a firewall? If so, there is a good chance that your solution might
already support VPN's out of the box. Check with your vendor for details.

Hope this helps

Simon

______________________________
Simon Adlem
Systems/Security Administrator
Fotango Ltd.
______________________________
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE/XdYmAEPeBJNaHh0RApgGAJ9ByLuyAUvO6CM6CQz/8iYYezg02wCfbbk0
osDfQ27seCfxvgNXuYCDsAM=
=SvFp
-----END PGP SIGNATURE-----

• Previous message: Thomas Chiverton: "Re: Accessing file server"
• In reply to: Kanwar Sidhu: "Accessing file server"
• Next in thread: cschwede_at_delphi-gmbh.de: "Re: Accessing file server"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]