The first thing I would do is evaluate the business need verse your ability to patch and manage it. Skype like any app has had and will have vulnerabilities in it. Also there are some settings for security and privacy that may or may not be controllable via registry, etc... Personally we block it but we also have other resources in place that allow people to get their job done (i.e. conference bridges, blackberries, etc...)
A quick search on CVE DB http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=skype Hope this helps. Tim On Tue, Jun 8, 2010 at 9:12 AM, Sherwyn <[email protected]> wrote: > I am interested seeing how this topic goes since we are faced with the same > decision at work. > Infolookup > http://infolookup.securegossip.com > www.twitter.com/infolookup > > > -----Original Message----- > From: V IP <[email protected]> > Date: Tue, 8 Jun 2010 10:54:56 > To: <[email protected]> > Subject: Re: [Pauldotcom] Skype Security review > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
