Discussion on: Network security concerns: Mo’ remote workers mo’ problems

By: FM No Static At All

FM No Static At All — Fri, 22 Feb 2008 20:34:41 +0000

Having used my laptop over secure VPN networks while away from my desk, I can say that when properly administered, the user can enjoy access without worry. Both strong encryption and persistent authorization makes for safe remote access.

My recommendation is VPN access hardware on server and laptop. With a fingerprint reader installed on the laptop for authorization, even a stolen machine will not be a breach of security, unless the victims finger was included in the heist.

In addition to gaining access to my corporate servers and mainframe with security, I was also capable of telecommuting and doing all of my work from home. With complete console access to all my servers I was able to perform tasks that I normally would have to do from my desk, or in the server/data center.

If companies want to save money on office space and employees on commuting expenses, the price must be paid in advance to deploy all of the security measures necessary to make remote users a boost in productivity and bottom line.

By: Jajowers

Jajowers — Tue, 19 Feb 2008 17:11:15 +0000

Dave O,
could you give some examples of ones you avoid. Some of our users have run into the “works at some places, not at others”…wondering which ones you have noticed.

By: Dave O

Dave O — Tue, 19 Feb 2008 14:44:22 +0000

We have been using the Cicsco VPN in combination with the RSA SecurID for several years now, and it works great for us. We have employees all over the state and all have access to the LAN from home and motels. I don’t think we could do this if Win XP did not have it’s own firewall. Also, I’ve stayed at some motels where VPN connections were not allowed thru their system. I avoid those now.

By: Hasland

Hasland — Mon, 18 Feb 2008 15:33:04 +0000

I would agree but wish to add my ha’pennyworth. A few years ago I was given a laptop from an IT company to perform certain work for them. This I did. The OS (win XP without SP1 or 2) proved unstable. I was able to repair it myself and keep working using a pedestrian dial up login facility. I also used the laptop for all my other work, thus had only one to carry around. Due to the laptops being lost/stolen from other employees I had to return it to have pointsec put on. The company took exception to how I had configured the computer and gave me a locked down one in return which is no good for me with my other work. The result, I no longer care if this laptop lives or dies. If IT staff go too far, the users will get fed up and not care for the kit. Having peripatetic workers can be very cost effective for companies, but you have to have a human face to their IT or else problems occur. Out of 40 laptops on the contract only mine kept working because I had a vested interest in keeping it going. Outreach workers with dead laptops cost money, they still get paid for doing nothing!
AMcF