ND4SPD, NDD and any network gurus - Honda Motorcycles - FireBlades.org
Off-Topic Discussion of anything that doesn't fit anywhere else. If it's related to motorcycles in any way, DO NOT post it here. Post it in General Discussion or a more specific forum.

User Tag List

Reply
 
LinkBack Thread Tools
post #1 of 20 Old 11-14-2006, 3:19 PM Thread Starter
 
Join Date: 09-07-2004
Posts: 2,704
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
                   
ND4SPD, NDD and any network gurus

My wife needs some help answering a question and it doesn't make sense to me. She has to write a paper based on the following situation. I don't see the sense in it but I was hoping someone who does this for a living might see something that I can't.
Quote:

The Social System:

End-Users, Managers, and IT Professionals



You work for the CIO of your company as a strategic analyst. The CIO has just read the following article on ZDNet.
ZDNet AnchorDesk: Antivirus software must be free. Here's why
He thinks that the author asks a good question at the end of the article but is a little puzzled about the role that the author envisions for corporate customers. He wants you to write a brief report for him outlining whether you think that it would be useful for a company like yours to subsidize free distribution of anti-virus software to home users as the author proposes. In particular, he wants you to explain why there is a connection between the company's network and home users and how this might help your company's problems with viruses. He also wants you to consider whether there are other issues besides providing free software to home users that affect the network security of your firm and to be sure to put your discussion in the context of the roles of top management/non-IT management, IT professionals, and end-users play in maintaining network security.
You have recently read the following article that has set you to thinking about different perceptions of network security problems between IT professionals, end-users, and managers. (You can find much more material on IT professionals, end-users, and managers in the Background Materials for Module 3. You may also find the material on "socio-technical systems" in the Background Materials for Module 1 to be helpful.)
IT and End Users Differ on Spam Severity
Yes, the article is old but it's all she's been given to work with for this assignment. If any of you can provide some input, we'd appreciate it.

edit (for clarity):

This is for an MBA class paper. The biggest confusion lies in the use of "corporate customer" and "home user". If home user is defined as an employee accessing the network at home, the paper is easy to write. If corporate customer is simply a customer, then the question becomes: when would a simple corporate customer have enough access to a corporate network to introduce a virus to the network?

That's where we got stuck.

Last edited by seamus; 11-14-2006 at 3:33 PM.
seamus is offline  
Sponsored Links
Advertisement
 
post #2 of 20 Old 11-14-2006, 3:21 PM Thread Starter
 
Join Date: 09-07-2004
Posts: 2,704
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
                   
Re: ND4SPD, NDD and any network gurus

Sorry, abtech. Left you out of the known guru list. I'd appreciate any info you could provide too.
seamus is offline  
post #3 of 20 Old 11-14-2006, 3:25 PM
 
Join Date: 07-20-2001
Posts: 1,193
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
     
Re: ND4SPD, NDD and any network gurus

DOD holds antivirus license to provide for all military and civilians home systems.

All you need is that one person who has to bring something from their home system........
Johnny Diablo is offline  
Sponsored Links
Advertisement
 
post #4 of 20 Old 11-14-2006, 3:29 PM Thread Starter
 
Join Date: 09-07-2004
Posts: 2,704
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
                   
Re: ND4SPD, NDD and any network gurus

Quote:
Originally Posted by Johnny Diablo View Post
DOD holds antivirus license to provide for all military and civilians home systems.

All you need is that one person who has to bring something from their home system........
We talked about this at lunch today. I have to edit my original post to clarify, its for an MBA class.
seamus is offline  
post #5 of 20 Old 11-14-2006, 3:31 PM
 
Join Date: 02-07-2002
Posts: 10,531
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 1 Post(s)
Reputation Power: 0
                     
Re: ND4SPD, NDD and any network gurus

What Johnny is getting at is that the users of the corporate network (employees) also have computers at home, which may or may not be protected by antivirus software.
If that employee has an infected computer and has this wonderful picture of their perfect little niece (or whatever file), they copy it to a disk (usb drive, etc) and bring it into work, that file has the virus and can potentially infect the corporate network.
BDA116 is offline  
post #6 of 20 Old 11-14-2006, 3:33 PM
 
ND4SPD's Avatar
 
Join Date: 07-07-2002
Location: US
Age: 16
Posts: 16,568
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 50
                     
Re: ND4SPD, NDD and any network gurus

Your network is only as secure as the weakest link. All you need is one user that has '123' as their password, or one that doesn't lock their desktop when they walk away/go home for the night. Having your users do work from home is a double edged sword for the exact reason Johnny Diablo stated. You can't control what they have on their home computer. You can give them free antivirus and whatever else but that doesn't mean they know how to install it or that they're willing to do so. If you're gonna have people work from home the best way to control what they have at home is to give them a computer with a site to site VPN connection that is an extension of the company's network so that the same(or even stricter) policies apply to the home computer as the office computers.

You can also forbid people to do any work from home so they can't bring/email documents back and forth and expose them.

Just my humble
ND4SPD is offline  
post #7 of 20 Old 11-14-2006, 3:40 PM Thread Starter
 
Join Date: 09-07-2004
Posts: 2,704
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
                   
Re: ND4SPD, NDD and any network gurus

Quote:
Originally Posted by ND4SPD View Post
Your network is only as secure as the weakest link. All you need is one user that has '123' as their password, or one that doesn't lock their desktop when they walk away/go home for the night. Having your users do work from home is a double edged sword for the exact reason Johnny Diablo stated. You can't control what they have on their home computer. You can give them free antivirus and whatever else but that doesn't mean they know how to install it or that they're willing to do so. If you're gonna have people work from home the best way to control what they have at home is to give them a computer with a site to site VPN connection that is an extension of the company's network so that the same(or even stricter) policies apply to the home computer as the office computers.

You can also forbid people to do any work from home so they can't bring/email documents back and forth and expose them.

Just my humble
So everyone is defining corporate customer in the sense that it's employees either working from home or transferring data between home and work. In that sense, the question is not only simple, it's pre-school. It's the answer I know.

The issue we had with answering was the switch from "home user" to "corporate customer". We both saw the two phrases as two different entities. That's where we were confused. If a CIO or network admin sees corporate customer as an employee, then there's no issue with the question.

Thanks for all the info so far.
seamus is offline  
post #8 of 20 Old 11-14-2006, 3:43 PM
 
Join Date: 02-04-2005
Posts: 1,549
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
           
Re: ND4SPD, NDD and any network gurus

This is a multi-level problem. Yes, home users are usually retarded when it comes to IT security. By just offering them free antivirus is not going to fix that.

However, providing licenses to users is a huge step in the right direction, if people are doing work at home and bringing data back in. Johnny already mentioned that DoD provides free Antivirus licenses to any user that has a computer at home. Many large corporations do this as well. If you are a large company, you have a lot of pull with these vendors. Have Symantec come in, tell them that you want to include free licenses for your employees at home, or you are going to switch to a different vendor. They would rather give away a small amount of revenue than lose that huge corporate account and the yearly maintenance fees that go along with it.

Another alternative is to employ nazi-strict network access control, with policy based network autorization. This ensures that every machine plugged in to your network has anti-virus with the latest signatures, and whatever patches you deem required. This would ensure that all end user machines at your company have anti-virus software installed, that would scan all of the infected files your users bring in from home. However, that will cost much more that just giving your users free anti-virus. It does, however, provide a much stronger form of integrated security.

OK... long rant is over. If you have any specific questions, just ask.
navydevildoc is offline  
post #9 of 20 Old 11-14-2006, 3:50 PM
 
ND4SPD's Avatar
 
Join Date: 07-07-2002
Location: US
Age: 16
Posts: 16,568
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 50
                     
Re: ND4SPD, NDD and any network gurus

Ok, I see you've added some info. I think we're pretty clear on the "home user" part. If the "corporate customer" is in fact a customer(contractor, whatever) you make them sign a usage policy just like you do with your home users and make them go along with your standards. In other words, "this is what we have in place, therefore if you do any work for us you have to go along with these guidelines otherwise we'll give the contract to the guy standing in line behind you." Does that make more sense?
ND4SPD is offline  
post #10 of 20 Old 11-14-2006, 3:57 PM
 
sheepofblue's Avatar
 
Join Date: 07-12-2004
Location: Huntsville AL
Posts: 14,224
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 48
                     
Send a message via AIM to sheepofblue
Re: ND4SPD, NDD and any network gurus

They can be seperate entities. A reason to provide s/w to non-employees is to attempt reduction of network noise. In theory if it was free more people would have it installed. This may result in the reduction of zombies and spammers which might increase your throughput.

Must obey the sheep dog
sheepofblue is offline  
post #11 of 20 Old 11-14-2006, 3:59 PM
 
Join Date: 02-04-2005
Posts: 1,549
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
           
Re: ND4SPD, NDD and any network gurus

If the issue is worrying about what corporate partners are swapping over interconnected networks, firewall the hell out of that connection, and scan everything that comes across. Sign an agreement with that company making them liable for viruses or other malware that originates from their system.

It is not your responsibility to provide s/w to other companies employees.
navydevildoc is offline  
post #12 of 20 Old 11-14-2006, 4:11 PM Thread Starter
 
Join Date: 09-07-2004
Posts: 2,704
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
                   
Re: ND4SPD, NDD and any network gurus

Sweet, thanks all. We were on the same track with the employee access and the brainstorming you guys helped foster helped clear up some other aspects.

I sent Mrs Seamus the link and she's reading these too. I have to head home and get ready for my welding class. That's more my speed. Manual labor with a mathematical flair.

Oh, and you all got repped. Respek.
seamus is offline  
post #13 of 20 Old 11-14-2006, 4:20 PM Thread Starter
 
Join Date: 09-07-2004
Posts: 2,704
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
                   
Re: ND4SPD, NDD and any network gurus

Quote:
Originally Posted by navydevildoc View Post
If the issue is worrying about what corporate partners are swapping over interconnected networks, firewall the hell out of that connection, and scan everything that comes across. Sign an agreement with that company making them liable for viruses or other malware that originates from their system.

It is not your responsibility to provide s/w to other companies employees.
After the brainstorming this thread helped push along, I (we) think the idea of the first article is that free functional AV software in the hands of all endusers (even non employees) will help corporations reduce the amount of virii that affect them.

The second part of the question is whether AV software in and of itself will help which we all agree is not the case. Up until the DOD million character password policy, even I was using passwords I could remember and not necessarily ones that were effective. Training and enforcement of "network-nazi" policies, firewalls and limiting internet connectivity to sites deemed work-while is the other part.

Sounds alot like ndd's post but, it's not what you know it's who you know that you can steal it from.

Thanks again,

goin' weldin' now
seamus is offline  
post #14 of 20 Old 11-14-2006, 4:25 PM
 
Join Date: 07-20-2001
Posts: 1,193
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
     
Re: ND4SPD, NDD and any network gurus

Quote:
Originally Posted by navydevildoc View Post
Another alternative is to employ nazi-strict network access control, with policy based network autorization. This ensures that every machine plugged in to your network has anti-virus with the latest signatures, and whatever patches you deem required. This would ensure that all end user machines at your company have anti-virus software installed, that would scan all of the infected files your users bring in from home. However, that will cost much more that just giving your users free anti-virus. It does, however, provide a much stronger form of integrated security.

OK... long rant is over. If you have any specific questions, just ask.
NDD is talking about endpoint security. Integrity endpoint checkpoint and Symantec offer programs with these types of control. Its basicly a client that installs on the VPN client computer. The VPN at the corporate end allows access based on your system being patched and virus definitions up to date.

An alternative to all this would be a Citrix client but then you are vulnerable to keyloggers if someone is stupid enough to "citrix in" from a coffee shop kiosk or other public machine.
Johnny Diablo is offline  
post #15 of 20 Old 11-14-2006, 4:49 PM
 
Join Date: 06-05-2001
Posts: 8,271
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Quoted: 0 Post(s)
Reputation Power: 0
                 
Re: ND4SPD, NDD and any network gurus

No one has yet to mention remote access to encrypted secure terminal servers which in it's usual form, doesn't provide a link from the home user's system to the corporate system that could introduce a virus from the remote system to the host. We shut down all file transfer avenues other than remote printing and so far it hasn't been a problem with some 3500+ users at 6 different sites.

All of these clients have zero tolerance policies for outside media being intoduced into the system including client/vendor notebooks. They have firewalled "guest" routers that connect to the web without touching the internal net and isolated scan stations for users that must bring in authorized foreign media.

Again, this is very workable and we have yet to see a problem.
abtech is offline  
Reply

  Lower Navigation
Go Back   Honda Motorcycles - FireBlades.org > Other > Off-Topic

Quick Reply
Message:
Options

Register Now



In order to be able to post messages on the Honda Motorcycles - FireBlades.org forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
A valid e-mail address is REQUIRED. You will not have access to any site features until you activate your account using the activation e-mail that is sent to this address.

Email Address:
OR

Log-in










Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page



Similar Threads
Thread Thread Starter Forum Replies Last Post
Any PIX/Cisco gurus in the house? ND4SPD Off-Topic 9 01-17-2006 10:51 PM
Any Photoshop Gurus? Need help with my Logo. rocket Off-Topic 3 09-07-2005 11:44 AM
Any network security peeps here? Johnny Diablo Off-Topic 0 11-22-2004 5:57 AM
For ND4SPD Chain Off-Topic 24 07-09-2003 1:35 PM

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off

 
For the best viewing experience please update your browser to Google Chrome