[prev in list] [next in list] [prev in thread] [next in thread] 

List:       security-basics
Subject:    VPN Security Appliance suggestions?
From:       lmwills () telus ! net
Date:       2005-09-30 21:35:10
Message-ID: 1128116110.433daf8ec2271 () webmail ! telus ! net
[Download RAW message or body]

Hi all - I have users that want to access the network from home.  Now their home
machines are probably full of viruses, keyloggers, porn, spyware - who knows.

Instead of havbing them bring in their machines to the office where I clean
them, I would like to implment some kind of appliance.

How I envision it: 

1.  The appliance maker has a software client that needs to be installed on the
users machine.  The client checks to see if the computer is patched, if the
virus signatures are up to date, if a firewall is present  (and maybe what ports
are open), checks the services, looks to see if spyware is installed etc.

2.  The users vpns into the network, the client reports all of its findings to
the appliance.  The appliance checks its rules and if there is a match it allows
the user in.  If there are discrepencies, it sends a report to the user and the
system administrator who then both work on cleaning up the system so that it can
pass through the next time.

I know Firebox has something in this neighbourhood and Cisco has the Cisco
Security Agent.  Are there any other thoughts - anybody using something similar
that they love?

Thanks.

Lisa Wills



[prev in list] [next in list] [prev in thread] [next in thread]