Re: Intruders....?


"Phillip Windell" <@.> wrote in message
news:uSz$CLIYFHA.2508@xxxxxxxxxxxxxxxxxxxxxxx
> Network security means physical control of the building as
> well,...computer
> technology won't solve everything.
>
> You could set aside a subnet and make sure that all the wall outlets that
> are accessable to outsiders bringing in machines are physically connected
> to
> the subnet,...then don't provide DHCP for that subnet,...this forces them
> to
> come to you to get a static address to apply to thier machine.
>
> If you can't control the building in this way, then quite frankly, you
> cannot control this,..period.
>
> One possible solution is to use an Internet Sharing Device that
> authenticate
> by user account instead, ..such as ISA Server. Then even though they can
> get on the network physically, they still can't access the Internet. But
> this won't protect your LAN itself.
>
> If you don't run the company, then you are wasting your time anyway. The
> people who run the company are the only ones who have the "power" to make
> these things happen and they then tell you what they want done,...and then
> you tell them how you can do it and what you need to do it.
>
> --
>
> Phillip Windell [MCP, MVP, CCNA]
> www.wandtv.com
>
>
Microsoft have a very interesting system in place for their own lan which
should be appearing in Longhorn. Essentially any connection to their network
is first made to a quarantined area which contains a server which checks you
workstation for the latest av updates, patches and a certificate. If you
pass all of these tests you get an IP on their lan. If you fail you have the
option to be patched up to date via a server in the quarantined zone. Only
then can you get connected to the rest of the lan.

Apparently the idea was to incorporate this technology in 2003 R2 but the
timeframe has slipped


.

Relevant Pages

  • Re: 56k dial up on laptop 802.11G ?
    ... are you now a believer that I can control outgoing traffic without ... >>the definition of a network firewall. ... > that NAT is a real firewall because it functions to protect the LAN ...
    (alt.internet.wireless)
  • Re: best control network? Devicenet vs Lonworks vs CAN vs Fieldbus vs Ethernet ???
    ... > which control network would be, ahem, for lack of a better word, 'best'? ... I would not only look at the "best" technology, ... If it is a low volume application and the per-node costs are not ...
    (comp.arch.embedded)
  • Re: best control network? Devicenet vs Lonworks vs CAN vs Fieldbus vs Ethernet ???
    ... > which control network would be, ahem, for lack of a better word, 'best'? ... I would not only look at the "best" technology, ... If it is a low volume application and the per-node costs are not ...
    (sci.electronics)
  • Re: How to form a real-time small scale network?
    ... Our plan is to use 3 PCs to ... control each of them, in order to make each of them work on its own. ... What kind of network should we choose to connect them and carry out ... I would do it all in one PC and avoid using the LAN. ...
    (sci.engr.control)
  • Re: Loss of Connectivity on Only One PC on a LAN
    ... When you ran the Network Setup Wizard, ... The original setup of the LAN was done entirely by the user of the other PC on that LAN in July. ... I use a LAN connection which consists of two PCs each connected to a Linksys BEFSR 41 Router. ...
    (microsoft.public.windowsxp.network_web)