Besides the obvious "don't do it", if you must, there are registry entried
which will help a lot for securing PCA, the details of which can be found on
thier relatively well stocked knowedgebase.
-set a specific port for PCA to use
-set value to tell PCA to use ONLY that port
-set PCA to use domain authentifiation
-set the host to log failed login attempt and then contrive some means to
get those logs onto another machine somewhere else in a read only form
-on host limit login attemps
-on host limit time to complete login
-set host to use key based encryption and deny lower
Depending on your use there are things to do on the remote client to for
PCA. I don't know much about notes.
Egoslayer1
(nope, NOT my real name...cope!)
****************************************************
>From: "Harry Behrens" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>
>Subject: Passing Notes and pcAnywhere
>Date: Tue, 23 May 2000 19:51:35 +0900
>
>
>I have a client requesting me to configure a Linux-based machine (ipchains)
>to allow Notes (over TCP/IP) traffic as well as pcAnywhere (over TCP/IP).
>Does anyone:
>
>- have specific reasons not to do this
>- pointers to ports etc. used (and which therefore need to be opened)
>- information about special quirks (a.k.a. ftp-like behaviour with
>client/server reversal of roles)?
>
>I have to admit I am new to both protocols (used to 'traditional' TCP/IP'
>based nets (WWW,WMTP/POP etc.))
>
>Regards,
>
> Harry Behrens
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
