Re: Allowing scanning from home

From: Will Thornsbury (pro_logos_at_hotmail.com)
Date: 10/29/04

  • Next message: Ghaith Nasrawi: "Re: Electronic signatures and watermarking?" 
    To: voss@albany.edu, ericaldrc51@netscape.net
Date: Fri, 29 Oct 2004 01:41:29 +0000

    I have to say though that if you're doing penetrations, even testing over an
    ISP's connection then that could be considered illegal. Even if the CIO or
    IT Manager authorized this kind of activity, you still are coming in over an
    ISP connection. I would suggest plugging into the company's external router
    or switch and doing tests that way.

    >From: Donald Voss <voss@albany.edu>
    >To: ericaldrc51@netscape.net
    >CC: security-basics@securityfocus.com
    >Subject: Re: Allowing scanning from home
    >Date: Thu, 28 Oct 2004 16:33:22 -0400
    >
    >Eric,
    >
    >I'm not the group .. but my $.02.
    >
    >Policy, policy, policy, as in your company's.
    >
    >Satisfy that .. or decide one needs to be written and approved.
    >
    >Then .. a get out of jail card .. written .. by supervisor on up if need be
    >with details - names, tools, - maybe a time period .. a report, etc.
    >
    >/don
    >
    >
    >ericaldrc51@netscape.net wrote:
    >>What's the group's consensus on allowing security staff to scan the
    >>company's external interfaces from their home, to get a true external
    >>assessment. I personally don't agree with this for audit and other
    >>reasons. Just looking for some other professional viewpoints. Thx.
    >>
    >>__________________________________________________________________
    >>Switch to Netscape Internet Service.
    >>As low as $9.95 a month -- Sign up today at
    >>http://isp.netscape.com/register
    >>
    >>Netscape. Just the Net You Need.
    >>
    >>New! Netscape Toolbar for Internet Explorer
    >>Search from anywhere on the Web and block those annoying pop-ups.
    >>Download now at http://channels.netscape.com/ns/search/install.jsp
    >>
    >
    >
    >--
    >
    >______________________________________________________________
    >Donald W. Voss voss@albany.edu
    >Sr.Systems Analyst
    >AS218 Geography Department
    >The University at Albany
    >Albany, NY, USA 12222
    >
    >1 kilometer = 112.48593925759280089988751406074 cups of coffee.

  • Next message: Ghaith Nasrawi: "Re: Electronic signatures and watermarking?"

    Relevant Pages

    • Re: Allowing scanning from home
      ... Has anyone ever had an issue with their ISP they wish to share? ... >an ISP's connection then that could be considered illegal. ... >>Policy, policy, policy, as in your company's. ... >>The University at Albany ...
      (Security-Basics)
    • Re: Allowing scanning from home
      ... Policy, policy, policy, as in your company's. ... > Switch to Netscape Internet Service. ... The University at Albany ...
      (Security-Basics)
    • Re: Remote Client Configuration
      ... Thanks for quickly updates. ... Just as I know, if you only logon the domain with cache credential, the ... group policy will not be updates, instead it will use the old policy that ... dial up VPN connection to logon SBS domain once-in-a-while for the group ...
      (microsoft.public.windows.server.sbs)
    • Re: 802.1x authentication for wireless issues w/ ISA 2004
      ... Access Policy, ... But I still wonder why it stops working if you stop IAS from ... IAS server in "New features for IAS" Can't remember how I got forwarded ... In the "connection request policies" The default policy there is fine but ...
      (microsoft.public.windows.server.sbs)
    • Re: 802.1x authentication for wireless issues w/ ISA 2004
      ... I do have the dial in permisions for the users in AD set to use the remote ... and to refer to the remote access policy. ... one place but part of it was in the Accepting a connection article. ... But I still wonder why it stops working if you stop IAS from ...
      (microsoft.public.windows.server.sbs)