Re: Desktop Support Access
From: Tim Syratt (tim_at_syratt.com)
Date: 10/18/03
- Previous message: Tomas Wolf: "Re: MAC address"
- In reply to: Thomas Graf: "Re: Desktop Support Access"
- Next in thread: Halverson, Chris: "RE: Desktop Support Access"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Thomas Graf" <tgraf@swmail.sw.org>, <security-basics@securityfocus.com> Date: Sat, 18 Oct 2003 21:59:19 +1000
Hi Thomas,
I have one further suggestion that might help you, its a bit of work but
also worth a try if your compromising productivity over security.
If you have any programmers at your disposal, write a PHP solution to your
problem, making use of SSL and a secure OS (linux etc).. Make sure the
solution requires desk top support members to 'log in', and use SNMP to
read/write data to the switches. Make use of SQL or similar to log
login/logouts, and a log of who changed what.. because you can be sure that
you'll eventually come to a situation where someone changed something and no
one will own up, and you'll have management breathing down your neck for
answers ;-) - it also gives you the security in knowing that you can still
control the control that others have.
All the best,
Tim
----- Original Message -----
From: "Thomas Graf" <tgraf@swmail.sw.org>
To: <security-basics@securityfocus.com>
Sent: Saturday, October 18, 2003 6:01 AM
Subject: Re: Desktop Support Access
> Thank you to everyone that responded. The suggestions were great. It
> was great to be prepared to do something but I don't think that we will
> give the desktop people the access to the routers. The network admin
> was saying yes this morning and no a while ago.
>
> Thanks again,
>
> Thomas Graf
> HW/SW Technician
>
> --------------------------------------------------------------------------
-
> FREE Whitepaper: Better Management for Network Security
>
> Looking for a better way to manage your IP security?
> Learn how Solsoft can help you:
> - Ensure robust IP security through policy-based management
> - Make firewall, VPN, and NAT rules interoperable across heterogeneous
> networks
> - Quickly respond to network events from a central console
>
> Download our FREE whitepaper at:
> http://www.securityfocus.com/sponsor/Solsoft_security-basics_031015
> --------------------------------------------------------------------------
-- > --------------------------------------------------------------------------- FREE Whitepaper: Better Management for Network Security Looking for a better way to manage your IP security? Learn how Solsoft can help you: - Ensure robust IP security through policy-based management - Make firewall, VPN, and NAT rules interoperable across heterogeneous networks - Quickly respond to network events from a central console Download our FREE whitepaper at: http://www.securityfocus.com/sponsor/Solsoft_security-basics_031015 ----------------------------------------------------------------------------
- Previous message: Tomas Wolf: "Re: MAC address"
- In reply to: Thomas Graf: "Re: Desktop Support Access"
- Next in thread: Halverson, Chris: "RE: Desktop Support Access"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
