Re: Students' computers...

From: Brian J. Baas, CISSP (bbaas_at_calvin.edu)
Date: 09/30/05 

Date: Fri, 30 Sep 2005 10:28:44 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Shadus wrote:
> On 2005-09-29, Geir Holmavatn <geir2@hotmail.com> blabbed:
>
>>What tips do you give as of security measurements in this scenario?
>
>
> One thing I would be sure to do is have a firewall on the edge of the
> network to prevent scanning and attacks of opportunity.

We, at Calkvin College, use Campus Manager from Brandford Networks
URL:http://www.bradfordnetworks.com/

This product will scan for lot of stuff before letting a machine on the
network. It has alot of backend stuff (vlans, a control server...)

It might be worth a look...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFDPUuc75lPrRo1ceARAx+cAKD2DPCctDcxCjcFn0j1gSvn9y5MTwCguZGR
T814VjEezid2CCE9nWkeouY=
=I56E
-----END PGP SIGNATURE-----

Relevant Pages

  • Re: ISA 2004 FWC + Single Nic Template ISA2004
    ... There are numerous reasons this scenario isn't supported - the largest of which are "not designed or tested to operate this way". ... modify the "Internal" network set to only include the IP's that are actually ... ISA box. ... Firewall Client = Winsock Client - Single NIC ISA = No Winsock Support. ...
    (microsoft.public.isa.clients)
  • Re: Theory Question
    ... Crist's scenario is not a probable one (as he, ... And the hacker would also need to have intimate knowledge of your ... network configuration to be able to supply the correct parameters to ... the original design was an exterior DMZ firewall (or perhaps I just missed ...
    (FreeBSD-Security)
  • Re: Does there exist something like a networked filestorage
    ... You need GnuPG to verify this message ... > now like to fill them up with hard disks ... > them to a network but present them as one single filespace. ... device like Peter's ENBD, search freshmeat.net for "ENBD". ...
    (comp.os.linux.networking)
  • Re: Problems with SQLEXEC
    ... This may suggest that the network at client end is problematic. ... but nothing is known for sure, so can't even suggest changing config worth thousands of dollars ... that is not how the real scenario is supposed to be. ... I don't know what laws apply to your country ...
    (microsoft.public.fox.programmer.exchange)
  • Re: OT: unathorized network user.
    ... network w/ instructions on how to print to it. ... I connect via your wireless AP and use it to send out spam. ... The police come knocking at your door. ...
    (Fedora)