RE: About MS-Networking security.

From: Dan Bartley (bartleyd_at_corp.netcarrier.com)
Date: 01/15/04

  • Next message: Eric McCarty: "RE: Encrypt data - SQL Server 2000" 
    Date: Thu, 15 Jan 2004 15:45:41 -0500
To: "Cyber Chiu`" <cchiu@hotspur.com.hk>, <focus-ms@securityfocus.com>

    Centralized management of the desktop. Reduce their privileges to limit
    what they can do, use centrally managed policies and anti-virus methods.
    Set up alerts for the anti-virus system so you know when something
    happens, etc.

    The privileges is likely to generate complaints, but in reality most
    sales people do not really need to install the latest BMW viewer to do
    their job.

    You have to weigh cost in damage and repair for loosely managed systems
    against the real need for the user to have elevated privileges that open
    them up to more problems.

    Clearly define policies on use of company computers. Users should be
    held accountable for doing things with company property that have
    nothing to do with company business, such as the latest graphic porn
    site, etc.

    Those things would be a start.

    Best Regards,

    Dan Bartley

    -----Original Message-----
    From: Cyber Chiu` [mailto:cchiu@hotspur.com.hk]
    Sent: Sunday, January 11, 2004 16:26
    To: focus-ms@securityfocus.com
    Subject: About MS-Networking security.

    Hi all, I have a question about portable computer security concern.

    My company have firewall protection, all desktop are behind firewall.
    However, My saleman need to do their business with a Laptop. When
    they're in office. They will connect their laptop to our internet.

    I think it's danger because we don't know it's infected by virus or not.

    can anyone suggest me what to do?

    ------------------------------------------------------------------------ 

    ---
------------------------------------------------------------------------
---
---------------------------------------------------------------------------
---------------------------------------------------------------------------
  • Next message: Eric McCarty: "RE: Encrypt data - SQL Server 2000"