Re: Installing BlackICE Over Remote Desktop?
From: Duane Arnold (notme_at_notme.com)
Date: 06/15/04
- Next message: Duane Arnold: "LOL and IMHO"
- Previous message: Casey: "Re: Sygate and Windows XP guest account"
- In reply to: DC: "Installing BlackICE Over Remote Desktop?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 15 Jun 2004 00:10:28 GMT
DC <jdoe@hotmail.com> wrote in
news:Xns9508ACA7EC326jdoehotmailcom@66.185.95.104:
> Is it possible to install BlackICE PC Protection over the MS remote
> desktop connection without losing the connection? I'm assuming that
> once the product is installed it will block this kind of acccess to
> the remote computer since it defaults to Paranoid protection level.
> Is there a command line switch one can use to install it in Trust All
> mode?
>
Sure you can use BI as the IDS/FW to protect the remote machine. You
should not be setting the Trust All rules for BI as that will tell BI to
not inspect the network traffic with the IDS component.
You should use the Accept rule that tells BI to inspect the network
traffic with the IDS component.
You should find out what the inbound ports are for the Remote desktop
sharing application that's on the machine that BI is running on and only
make FW rules for those ports.
You should also create the FW rules only allowing specified inbound IP(s)
if possible.
You should use a VPN connection between the machines, if possible for
better security.
You should use a strong user-id and password on the host machine.
You should enable the Logging in BlackIce and install the free VisualIce
to review the BlackIce logs.
Duane :)
- Next message: Duane Arnold: "LOL and IMHO"
- Previous message: Casey: "Re: Sygate and Windows XP guest account"
- In reply to: DC: "Installing BlackICE Over Remote Desktop?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
