a) Trust that the vendor just looks at what is necessary and isn't there to
pull coporate knowledge.
1) Security waiver from the security group.
2) Use of external modems which are disconnected from the server
3) The phone line available runs through the patch panel to allow for a
disconnect (clearly marked)
4) User/Password pair created specifically for each call.
5) Backdoor Daemon only runs when required.
6) Network Admin is around during the entire time the modem is connected.
Failing that you will have to get a site service contract that will do the
job for you which meets your security needs.
Anton
----- Original Message -----
From: "Sean Boyle" <[EMAIL PROTECTED]>
To: "Firewalls Mailing List" <[EMAIL PROTECTED]>
Sent: Tuesday, October 10, 2000 4:04 PM
Subject: Modems on Servers
> With increasing regularity, vendors seem to be insisting (to the point
> of being a lockout spec) on modems being attached to their products in
> order to qualify for a support contract.
>
> How are others handling this 'backdoor' remote access system?
>
> --
> PGP Fingerprint: 22 68 D5 18 7F 3D D2 28 38 97 90 97 17 55 61 59
> GPG Fingerprint: D5C0 2D79 F517 EEB6 D30B 58B3 9E37 E7CA 47A9 56EE
> Opinions expressed here do not necessarily express the opinions of
> Mentor Graphics or its subsidiaries.
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
