Re: Possible inside security breach
From: Paul Adare - MVP - Microsoft Virtual PC (padare_at_newsguy.com)
Date: 08/28/04
- Next message: Oli Restorick [MVP]: "Re: Possible inside security breach"
- Previous message: Oli Restorick [MVP]: "Re: Possible inside security breach"
- In reply to: Oli Restorick [MVP]: "Re: Possible inside security breach"
- Next in thread: Oli Restorick [MVP]: "Re: Possible inside security breach"
- Reply: Oli Restorick [MVP]: "Re: Possible inside security breach"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 28 Aug 2004 05:59:15 -0400
In article <e$2YfPOjEHA.2436@TK2MSFTNGP09.phx.gbl>, in the
microsoft.public.win2000.security news group, Oli Restorick [MVP]
<oli@mvps.org> says...
> In fact, if you have a user account, you wouldn't even need to have your
> machine joined to the domain to gain access to data. Connection to the
> network is all that's needed and a VPN connection gave him that.
>
That's not necessarily true all of the time, for example, if your
internal network is secured via IPSec using Kerberos or Certificate
auth.
But the bottom line here is that the lack of knowledge on the part of
the consultant in the OP is the cause of the events that took place.
-- Paul Adare This posting is provided "AS IS" with no warranties, and confers no rights.
- Next message: Oli Restorick [MVP]: "Re: Possible inside security breach"
- Previous message: Oli Restorick [MVP]: "Re: Possible inside security breach"
- In reply to: Oli Restorick [MVP]: "Re: Possible inside security breach"
- Next in thread: Oli Restorick [MVP]: "Re: Possible inside security breach"
- Reply: Oli Restorick [MVP]: "Re: Possible inside security breach"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
