RE: Workstation security question

From: REAVA, JEFFREY [IT/0200] (jeffrey.reava@pharmacia.com)
Date: 06/04/02

• Previous message: Patrick Andry: "Re: Assistance Needed"
• Maybe in reply to: jradtke@admin1.umaryland.edu: "Workstation security question"
• Next in thread: Tod Beardsley: "Re: Workstation security question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "REAVA, JEFFREY [IT/0200]" <jeffrey.reava@pharmacia.com>
To: "'jradtke@admin1.umaryland.edu'" <jradtke@admin1.umaryland.edu>, focus-ms@securityfocus.com
Date: Tue, 4 Jun 2002 09:24:21 -0500 

You need defense at both layers; they should not be subject to the same
weaknesses or you haven't gained much additional security. If users download
infected software from the Internet, or receive malicious Email attachments,
both firewalls are subverted.

How is the antivirus protection on those systems? A combination of
auditing/integrity checking can also help address those risks. Once
something has penetrated the firewall, how do you know, and how do you
respond?

Jeff

-----Original Message-----
From: jradtke@admin1.umaryland.edu [mailto:jradtke@admin1.umaryland.edu]
Sent: Tuesday, June 04, 2002 9:00 AM
To: focus-ms@securityfocus.com
Subject: Workstation security question

We have a LAN with a mix of Win2000 and WinNT4 (phasing out the NT4)
workstations.

The only local user account on the workstation is the admin account. The
local admin account has no rights on the domain. Users are authenticated
through their domain accounts.

We have a campus wide firewall.

Should we be concerned enough about someone hacking into the workstations
and then tapping into our servers to put software based firewalls at each
workstation.

I would like to thank all of you in advance.

Jason

---

• Previous message: Patrick Andry: "Re: Assistance Needed"
• Maybe in reply to: jradtke@admin1.umaryland.edu: "Workstation security question"
• Next in thread: Tod Beardsley: "Re: Workstation security question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: W2K Domain Mixed Mode behide Firewall ... Firewalls in the middle of a domain are a real pain. ... For info. pertaining to what ports need to be open, ... > Server or Workstation, dont works. ... > with a PDC emulator, ... (microsoft.public.win2000.active_directory) Re: Network Help!! ... the firewalls were not really off. ... >>> as a file server. ... They also purchased a new XP computer as a workstation. ... Someone had set up their network for them. ... (microsoft.public.windowsxp.general) Re: Two PCs safer than one ? ... > One is a general workstation, and the other, slightly older machine, acts as ... slightly safer in overall security? ... > I'm thinking 'yes', as that's a router, and two firewalls to navigate before ... I would never run sendmail services mounted to a root OS on my primary ... (alt.computer.security) Re: SBS 2003 Premium, user changes password and loses network share access ... If no local admin account, log on as a domain admin. ... profile that has local admin permissions on the workstation. ... Merv Porter [SBS-MVP] ... (microsoft.public.windows.server.sbs) Re: Firewalls ... > The professional grade firewalls sold by companies such as Cisco ... >configuration software. ... >sites and installed on a network workstation to ... (microsoft.public.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > focus-ms  > 2002-06