Re: Network proximity warning

From: "Micheal Espinola Jr" <michealespinola@xxxxxxxxx>
Date: Mon, 7 Aug 2006 10:36:22 -0400

On 8/3/06, Eric Moakley <moakley.eric@xxxxxxxxx> wrote:

Hello all,
I was wondering if anyone had any suggestions for Legal notices issued
by Network devices. My company is currently looking for notices to
add to our security policy notifying any intruder that they have
entered secure space designated for company use. This is to be
implemented on the firewalls, routers, and switches as well as a
notice upon successful log on to our AD server. Does anyone have any
setup similar to this or experience relating to its use/usefulness as
an addition to security policies? Or does anyone have any suggestions
as to the content of such a warning?

I don't know how well this information still stands, but it was
debated a long time ago that any banner that had verbiage that
indicated a cordial greeting of invitation (such as the word "welcome"
in it) could prove legally challenging against probing connections or
people claiming to be innocently inspecting a public Internet node -
thus (as far as I am aware) it has long been cautioned against.

Here is a baseline message I use on all equipment within my supervision:

--------------------
UNAUTHORIZED ACCESS TO THIS NETWORK DEVICE IS PROHIBITED.

You must have explicit authorized permission to access or configure this
device. All activities performed on this device may be logged, and violations
of this policy may result in disciplinary action and may be reported to law
enforcement authorities. There is no right to privacy on this device.
--------------------

HTH - it certainly cant hurt...

--
ME2

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

References:
- Network proximity warning
  - From: Eric Moakley

Prev by Date: RE: ADS Password Storage Protection
Next by Date: RE: question about CISSP experience requirements
Previous by thread: Re: Network proximity warning
Next by thread: Re: Network proximity warning
Index(es):
- Date
- Thread

Relevant Pages

RE: A degree in MSIA - the various programs
... I am a 2005 graduate of the Norwich University Information Assurance ... Norwich is the well-known Information Security Specialist, ...
(Security-Basics)
How to get into Penetration testing?
... I think it is very good for a pen tester to have programming ... security company's position. ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic Excellence ...
(Security-Basics)
Re: Changing user password policy
... doing this with good security. ... > EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... > The NSA has designated Norwich University a center of Academic Excellence ... Our program offers unparalleled Infosec management ...
(Security-Basics)
RE: Sandboxie
... No sandbox product is fool proof. ... Java's first security model was fairly secure. ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic ...
(Security-Basics)
Re: lock down personal Win XP workstation
... IRC over public wireless sparingly. ... Additionally I use "Security Configuration and Analysis" MMC ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic ...
(Security-Basics)