On Tue, 17 Dec 2002, at 9:12am, [EMAIL PROTECTED] wrote: > A home user has DSL and wireless LAN, and this user uses the Internet to > VPN into work. Is the security hole primarily between the WAP and the > user, or could a hacker piggyback into the VPN connection as well?
A VPN creates a network connection between two points. When said user is connecting to the VPN at work, his home computer is joined to the network at work. How is his home computer maintained? If it is like most home PCs, it has anti-virus software with definitions that are two years out-of-date; four different instant messaging/chat clients; two different peer-to-peer file sharing programs (one of which is sharing the entire hard drive); six different spyware programs that are covertly sending data back to a third-party; no backups; and no firewall. If that is the case, worrying about the security of the wireless link is like worrying about the color of the deck chairs on the Titanic. You got bigger problems. :-) Assuming the PC is properly locked down against unauthorized software, that it has a firewall, a data protection plan, current anti-virus software, and no other home computers on the home LAN, then you might start worrying about the wireless link. The safest thing to do with a wireless link is to treat it as you treat the Internet: An unsecured, public network. Put a VPN client on the PC, and the secure tunnel created by the VPN will provide protection, the same as it does on the wired Internet. -- Ben Scott <[EMAIL PROTECTED]> | The opinions expressed in this message are those of the author and do not | | necessarily represent the views or policy of any other person, entity or | | organization. All information is provided without warranty of any kind. | ------ You are subscribed as [email protected] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to [EMAIL PROTECTED]
