Re: Using a home T-1 line to evade company filtering
From: Charles Newman (charlesnewman1_at_comcast.net.nospam.do.not.spam.me)
Date: 11/18/03
- Next message: Ron: "ICF and Outlook Express"
- Previous message: Dave: "Re: Security Newbie - DSNkong, Proxomitron, Kerio"
- In reply to:(deleted message) Leythos: "Re: Using a home T-1 line to evade company filtering"
- Next in thread: Speedy Gonzalez: "Re: Using a home T-1 line to evade company filtering"
- Reply: Speedy Gonzalez: "Re: Using a home T-1 line to evade company filtering"
- Reply:(deleted message) Leythos: "Re: Using a home T-1 line to evade company filtering"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 17 Nov 2003 15:07:49 -0800
"Leythos" <void@nowhere.com> wrote in message
news:MPG.1a230b598ce41f44989e29@news-server.columbus.rr.com...
> In article <W8-dnaRxBP0jpCSiU-KYhw@comcast.com>, charlesnewman1
> @comcast.net.nospam.do.not.spam.me says...
> > X-No-Archive: Yes
> >
> > "Lars M. Hansen" <badnews@hansenonline.net> wrote in message
> > news:m8airv40577sr1m1isr0a0nc0rnp8332ji@4ax.com...
> > > On Mon, 17 Nov 2003 11:25:30 -0800, Charles Newman spoketh
> > >
> > > >
> > > > Ah, but you see, they dont have the documentation,
> > > >in such a case to back it up. And my idea is not meant to
> > > >waste time, but rather to get around some usage policies
> > > >that go much too far, particularly not being allowed to
> > > >check E-mail on outside mail servers. I see nothing wrong
> > > >with using your ISPs E-mail service as your work E-mail.
> > >
> > > What you don't understand is that such policies are in place to
protect
> > > the corporate LAN from viruses and other malware. You may think that
> > > they go to far, but for someone who are protecting tens of thousands
of
> > > dollars of hardware and potentially millions of dollars of
information,
> > > this threat is very real. I used to work in publishing. Can you even
> > > image what a virus that would delete all image files would do if it
were
> > > allowed to run for just a few minutes? Can you imaging the amount of
> > > monies lost if we had 24 hours of downtime just when the magazine(s)
> > > were supposed to ship to the printers?
> > >
> > > You don't seem to understand that your plan will undermine any and all
> > > security policies put in place to protect corporate assets, and people
> > > taking advantage of this ISP of yours (were it ever to go beyond the
> > > planning stage) would most likely get fired so fast the wouldn't know
> > > what hit them. You're also likely to get sued by every company that
gets
> > > compromised through your service, whether it's a valid complaint or
not.
> > > Legal fees alone will either force you out of business, or the
> > > increasing liability insurance would.
> >
> >
> > Well, I just hope I do strike it rich someday, so I can
> > go into politics, and get a law passed restricting what
> > content an employer may block, restrict, or prohibit.
>
> You have to understand one simple thing - A COMPANY NETWORK BELONGS TO
> THE COMPANY!!!!!!
>
> A company can provide any level of service to its employees that it
> wants to - there is not promise of internet service just because you are
> working for a company that has internet access!
>
>
> > And by your logic, just about every coffee house and
> > Internet cafe could theoretically be sued. An increasing
> > number of them have wireless hotspots, which can be
> > accessed from up to 1.8 miles away with a high-gain
> > antenna.
>
> An they are in the business of providing LOCAL internet service WITHIN
> THEIR FACILITY. Should the standards of Wireless Signal Levels be
> exceeded by these businesses they will be fined and shutdown. There is
> abound NO chance that a cafe's signal will work inside anyone's building
> - esp since they are on the same frequency as other devices.
However, people have been able to tap into such
wireless networks, with just a Pringles atenna. The
antenna increases gain on both send and receive, so you
can talk to an unaltered network access point from quite
a distance away. I saw on TV one guy pinpoint and track
a signal coming from a Starbucks coffee location from
quite a ways away. I think you need to read the various
articles on Pringles can, and other high-gain antennas.
Starbucks had not altered their access point in any way.
This one guy just picked up the signal, and then noted
where it was coming from.
War drivers do this all the time. They use their
homemade high-gain antennas to pick up signals from
wireless access points all the time. If you have any
wireless nodes on your network you manage now,
war drivers could be zeroing in on any ont of them right
now.
>
> > What if someone NEVER uses the Ethernet connection
> > on the company LAN, and, instead, uses a wireless hotspot
> > from a nearby Internet cafe, and just simply logs into the
> > company network via VPN, or whatever remote access
> > the company implements? I dont think a company could
> > really take much of an issue with you loggin in via VPN,
> > and using that to do your work.
>
> You don't really believe that the company is going to let you sit in
> their office, connect to an external connection, VPN back into the
> office, and then let you access the LAN and internet at the same time do
> you? Most of the VPN clients restrict access such that the user can ONLY
> access the LAN and not the internet while the VPN is active!
And how are they going to control what you do on
an outside ISP. If I run a VPN client and then start,
say RealPlayer, Windows is not going to stop me from
starting RealPlayer or any other program I have installed
on my computer.
>
> > As long as you are doing your work, I see no trouble
> > with allowing an employee to connect to an ISP outside
> > the company, be it wiress, or over a phone line, and
> > then logging in to the company network via VPN.
>
> The point is that YOU ARE NOT DOING YOUR WORK when you are playing
> around on the web! You clearly state that you believe that people should
> be able to chat/browse while at work, which is NOT something they are
> paying you for.
My point is, and will continue to be, that are are
legitimate reasons to use an outside ISP. I STILL say
there is nothing wrong with using your ISP's E-mail
service as your work E-mail as long as you are doing
your work.
- Next message: Ron: "ICF and Outlook Express"
- Previous message: Dave: "Re: Security Newbie - DSNkong, Proxomitron, Kerio"
- In reply to:(deleted message) Leythos: "Re: Using a home T-1 line to evade company filtering"
- Next in thread: Speedy Gonzalez: "Re: Using a home T-1 line to evade company filtering"
- Reply: Speedy Gonzalez: "Re: Using a home T-1 line to evade company filtering"
- Reply:(deleted message) Leythos: "Re: Using a home T-1 line to evade company filtering"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
