Forgive me if this seems trivial or "newbieish" but I am new to the "Security" end of computing.
With the new CERT Advisory CA-2003-08. I got me to thinking "What are others policies, procedures, and requirements for home users connecting via VPN to a corporate network?" When a person connects a VPN connection from their home to the office, they can very easily have a Trojan or a virus. This would allow for easy infection or access to the corporate network. What are what are your thoughts on policies, procedures, requirements for VPN users connecting to the corporate network as far as Password requirements, Personal Firewalls, Virus Software, Etc.? Thanks in advance for your sugestions. By the way our clients vary. Our clients are all in different professions, meaning we have everything from health care providers to mortgage companies to printing companies. Jonathan Grotegut DirectPointe