-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John Lindblom wrote: | Good point, nothing is considered trusted anymore. Do you have specific | rules in place only allowing certain ports over your VPN's and another to | block everything else?
The answer is unique to each company. Just think hard on what traffic you MUST have over the VPN. Everything else should simply be blocked. This sounds relative easy. But you will find that each and every person will hold a different view. Should you allow traffic to a network share? If the share is on a server then the answer tends to be yes. But you will get people reporting the inability to access a share on a co-worker share if they are not in the office. Unless you get backing by your management and educate them first about the company horrors you will invite by a loose policy you will fight a lost battle. Hugo. - -- [EMAIL PROTECTED] http://hugo.vanderkooij.org/ PGP/GPG? Use: http://hugo.vanderkooij.org/0x58F19981.asc A: Yes. >Q: Are you sure? >>A: Because it reverses the logical flow of conversation. >>>Q: Why is top posting frowned upon? Bored? Click on http://spamornot.org/ and rate those images. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFIKETiBvzDRVjxmYERAlcnAJ4xFxkKWkzYcZPXaUSuUiydLe3JDACeJMi7 MTVjiUZ6/OC4lQv4VmwZ4MU= =SQ1D -----END PGP SIGNATURE----- Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
