Re: Where should security exist?

From: Shawn (Shawn@noemail.com)
Date: 07/24/02

• Next message: MSS: "Disable Logon"
• Previous message: sean: "Palm Pilot in W2k"
• In reply to: Keith W. McCammon: "Re: Where should security exist?"
• Next in thread: Keith W. McCammon: "Re: Where should security exist?"
• Reply: Keith W. McCammon: "Re: Where should security exist?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Shawn" <Shawn@noemail.com>
Date: Wed, 24 Jul 2002 13:00:06 -0700

Even if all the data was being saved on the servers,
wouldn't you still risk the fact that a user can download
and run some program that can comprise the security of
the entire network.

I am just thinking, if over 70% of the companies that get
hacked, get hacked from within their organization, why
would it be a bad practice to harden the security on
workstations as well the servers.

The article I read was written by someone who said was a
consultant for Pricewaterhouse.

 
>-----Original Message-----
>> I was wondering, can someone tell me, should you or
>> should you not secure workstations in a enterprise?
>
>Depends on the enterprise, and the security policies
that exist. Network
>security is just policy enforcement.
>
>> I was reading an article the other day, and it said
that,
>> hardening security on workstations in an "enterprise",
is
>> not a good thing to do. It is best practice to secure
the
>> servers as well as all the incoming and outgoing lines
to
>> or from your network to outside.
>>
>> Is this statement true? Why or why not..
>
>Again, this depends. If the value placed on the data on
the workstations is
>(or could be) of significant value, then you'd better be
enforcing some type
>of security policy at the desktop. If there's nothing
of value, then you
>may be fine just updating AV signatures regularly and
distributing critical
>patches only. It's all relative to the general policies
in place. If the
>article did indeed phrase their comments this way, then
the article is
>over-generalizing, and is wrong. Don't believe
everything you read!
>
>
>.
>

• Next message: MSS: "Disable Logon"
• Previous message: sean: "Palm Pilot in W2k"
• In reply to: Keith W. McCammon: "Re: Where should security exist?"
• Next in thread: Keith W. McCammon: "Re: Where should security exist?"
• Reply: Keith W. McCammon: "Re: Where should security exist?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages IT Security Administrator in Bend, OR ... workstations as well as physical security for I/T systems. ... manages network security software and hardware. ... Extensive experience with Windows 2000/2003 servers and Exchange ... Two years experience configuring, installing and implementing VMWare ... (comp.arch) Re: How to access I/O port directly in VC6.0? ... As soon as you have standalone machines, ... Their "security" as far as servers was a joke; ... discovered the internal wireless network was completely unencrypted. ... (microsoft.public.vc.mfc) Re: Pen testing Fiber Channel ... If direct access to the network is available, ... Subject: Re: Pen testing Fiber Channel ... > server to another on a different higher security network. ... SAN servers are usually on isolated ... (Pen-Test) RE: [fw-wiz] Security Audit and Priorities ... Learn your network. ... - Linux Security Cookbook ... Building Secure Servers with Linux ... It's one thing to be a firewall admin and write ... (Firewall-Wizards) Re: Microsoft Strategic Technology Protection Program ... servers and workstations through GPOs. ... that it's impossible for users to inadvertently execute worm scripts. ... and other security patches using startup scripts written in JScript. ... (NT-Bugtraq)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint