Re: A "secure" Guest account for ISA server

• Previous message: Bobby McMillan [MSFT]: "RE: can't disable password complexity requirement policy"
• In reply to: BOT House: "A "secure" Guest account for ISA server"
• Next in thread: BOT House: "Re: A "secure" Guest account for ISA server"
• Reply: BOT House: "Re: A "secure" Guest account for ISA server"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 14 Dec 2003 19:40:22 -0800

In article <Od86CbnwDHA.3468@TK2MSFTNGP11.phx.gbl>, BOTHouse@insight-*-rr-*-
com says...
> The problem is this: management wants to deploy an interior anonymous proxy server, but they want to know who uses it to go where.
> Probably 75% of the users will be from trusted domains. It is up to the untrusted domains as to how they will prevent "their" users
> from using "our" proxy (yes, it's a political nightmare).

This is a big problem. Your managers want to trust an "untrusted" domain to
prevent your proxy from being abused? Why don't they just issue blank checks
to the employees on payday? It is up to the trusted network to prevent
access by untrusted domains. Period. Otherwise there is no sense in even
trying to secure the proxies.

-- 
Norman
~Win dain a lotica, En vai tu ri, Si lo ta
~Fin dein a loluca, En dragu a sei lain
~Vi fa-ru les shutai am, En riga-lint

• Previous message: Bobby McMillan [MSFT]: "RE: can't disable password complexity requirement policy"
• In reply to: BOT House: "A "secure" Guest account for ISA server"
• Next in thread: BOT House: "Re: A "secure" Guest account for ISA server"
• Reply: BOT House: "Re: A "secure" Guest account for ISA server"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]