>Some of us would really like to know what the risks are with Netmeeting.
We
>get requests for it frequently - through the firewall, and would like a
>configuration that would allow that, but haven't found a secure way to do
it
>yet...
One scenario that was mentioned in a previous netmeeting thread was
exposure to nasty VB scripts being dumped into a document while using the
appsharing. I think it would be relatively easy to install a remote
control app like BO through this vector.
>From a user perspective netmeeting really opens things up and is valuable.
>From a firewall admin perspective netmeeting really opens things up and is
dangerous.
The best recommendation I have heard for securing netmeeting is to have a
dedicated quarantine workstation with NO other network access (preferably a
separate subnet). If it is compromised, nothing gets hurt--just re-image
the hard drive as necessary.
CB
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
