RE: PCanywhere: security of it and operation over DSL/cable modems

From: Mario Camara (mario@node1.com.br)
Date: 07/24/02 

From: "Mario Camara" <mario@node1.com.br>
To: "'Eric S. Wehr'" <eswehr@hostarica.com>, <securitybasics@plumlee.org>, <security-basics@securityfocus.com>
Date: Tue, 23 Jul 2002 21:15:35 -0300

No need for all that stuff...
Go to www.famatech.com and download a 30 day evaluation of Radmin...
It can be used in any kind of connection, is faster than any other
solution, is almost free (starting at US$ 35,00 for each 2 computaers),
can use encrypted connection and can use NT Level security...
Wow!
I am sure you will look no longer...

 
 
Mário Câmara
mario@globonet.com.br
mario@node1.com.br
ICQ: 331 335
 
 
PS: I DO NOT WORK OR HAVE ANY AFFILIATION WITH FAMATECH...
I only like the product as it solves me so many problems...

 
 
Deseja receber uma dica de Windows por dia?

Envie uma mensagem em branco para:
dicadodia-subscribe@yahoogroups.com
 
 
 
 

-----Original Message-----
From: Eric S. Wehr [mailto:eswehr@hostarica.com]
Sent: Tuesday, July 23, 2002 1:23 PM
To: securitybasics@plumlee.org; security-basics@securityfocus.com
Subject: RE: PCanywhere: security of it and operation over DSL/cable
modems

Potential Solution is to use the VPN, use a remote control program
(pcanywhere, controlit from ca (old RCO product renamed) or term
serv(has to connect to 2K server)). This way you will not only have a
VPN encrypted connection but you are not opening up a desktop through
the firewall. Once connected on a VPN, you can connect to any internal
boxes with remote control software and do the work as if in the office.

As for speed over broadband. You need a consistent connection speed.
DSL is great for this, but Cable modem speeds vary to much and can cause
sluggishness and frustration.

Best of luck.

Eric

-----Original Message-----
From: Klepinger, Aaron [mailto:Aaron.Klepinger@CompuCredit.com]
Sent: Tuesday, July 23, 2002 9:01 AM
To: 'securitybasics@plumlee.org'; security-basics@securityfocus.com
Subject: RE: PCanywhere: security of it and operation over DSL/cable
modems

i've often heard Remote Admin mentioned on some lists as a good product
(fast & secure), but I can't vouch for it myself. it's cheap, too
($35/2pcs)

http://www.radmin.com/

thx,
aaron

-----Original Message-----
From: securitybasics@plumlee.org [mailto:securitybasics@plumlee.org]
Sent: Monday, July 22, 2002 4:35 PM
To: security-basics@securityfocus.com
Subject: PCanywhere: security of it and operation over DSL/cable modems

We have a workstation at the office that needs to allow a user remote
access for running software on the workstation. I don't think a VPN
will
work because the user MUST run the software on this machine, as if he
was
seated at it. I'm looking at gotomypc.com and pcanywhere. I don't feel

comfortable using gotomypc.com as this is proprietary company
information
and I don't trust someone else having the access information for the
workstation that has the info on it.

My questions are as follows:
1. Has anyone got experience with the security of PCanywhere running
over
a DSL/cable modem connection? What should I watch out for? From what I
understand, I can use HTTPS as one of the options for the
connection. Anyone know the encryption level? Are all parts of the
transactions secured with encryption?
2. How does the software work if it's over a broadband connection? My
internal IPs aren't valid for routing. How does the software know a
connection is being initiated?
3. Any better solutions come to mind? I'd rather have a PITA setup
that's
secure than a simple one that's not.
4. What security measures should I implement on the users PC to make
sure
that it's secure as well? I won't have physical access to it but for
the
initial setup.

I'll be interested in seeing if this gets posted at all due to the
recent
acquisition of securityfocus by Symantec. Can't bite the hand that
feeds
you, I guess.

Many thanks for any help. Long time reader (well, several months at
least), first time poster.

==================================================
This message contains PRIVILEGED and CONFIDENTIAL
information that is intended only for use by the named recipient. If you
are not the named recipient, any disclosure, dissemination, or action
based on the contents of this message is prohibited. In such case please
notify us and destroy and delete all copies of this transmission. Thank
you. ==================================================

Relevant Pages

  • [NEWS] eSeSIX Thintune Thin Client Multiple Vulnerabilities
    ... Get your security news from a reliable source. ... All Linux-based Thintune models with firmware version 2.4.38 and prior ... REMOTE ROOT SHELL / BACKDOOR ... ica con_0_10 - password for first ICA connection ...
    (Securiteam)
  • RE: PCanywhere: security of it and operation over DSL/cable modems
    ... I did recall a message about a hacked PCanywhere machine. ... Subject: PCanywhere: security of it and operation over DSL/cable modems ... Has anyone got experience with the security of PCanywhere running over ... a DSL/cable modem connection? ...
    (Security-Basics)
  • re: PCanywhere: security of it and operation over DSL/cable modems
    ... PCanywhere running over a DSL/cable modem connection? ... The physical medium isn't really the issue...if it's ... Basic security principles apply...as ever. ...
    (Security-Basics)
  • [NT] pcAnywhere Vulnerable to a DoS (Multiple Connections)
    ... pcAnywhere Vulnerable to a DoS ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... A security vulnerability in pcAnywhere - a product by Symantec that allows ... to no longer respond to legitimate connection requests. ...
    (Securiteam)
  • Re: Please, dont kill my WiFi!
    ... potentially bypassing whatever security is at the periphery of the company ... wants to block a connection, it does notify me. ... status suddenly changes from Connected to "Driver not loaded". ... user to choose to run that email attachment or allow that ActiveX control ...
    (microsoft.public.pocketpc.activesync)