To: Chris Riddell: there is a product called "SecurID" by the company named
"RSA Security" (or was it "RSA SecurID"?). They may a one time token card
that changes its value every 60 seconds. Every token is assigned to an
individual, and the SecurID system knows that person X at time Y should type
in their pin plus token value 123456. Very good at authentication. KPMG
uses them for their remote access systems.
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, October 09, 2000 11:35 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: RAS Modem Firewall
1. Cut your signature file in half, use three or four lines at most,
because if one does multiple replies with you, everyone will know your
signature file by heart in a couple of hours or so.. :)
2. There are a few wardialing programs that can assist in testing of your
RAS architecture, but after reviewing a recent one that relies on JRE, I
would recommend using an oldies but a goodie war dialing application
./mark
At 11:42 AM 10/9/00 +0100, Chris Riddell wrote:
>Hallo
>
>I am on an NT Server, and I am about to setup RAS using a few 56k Modems.
>The problem is we are a software company and vunreable to attacks and this
>is serious considering the clients we have etc etc.
>
>I am aware that it is difficult if not impossible to setup firewalling with
>a modem. Can anyone help with this?
>
>I have heard about a card system called "SECURID" which creates "random"
>numbers in sync with the server, which obviously is more secure - has
anyone
>heard or used much about this? Are there any other suggestions instead of
>this?
>
>Thanks for your help anyone
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
*****************************************************************************
The information in this email is confidential and may be legally privileged.
It is intended solely for the addressee. Access to this email by anyone else
is unauthorized.
If you are not the intended recipient, any disclosure, copying, distribution
or any action taken or omitted to be taken in reliance on it, is prohibited
and may be unlawful. When addressed to our clients any opinions or advice
contained in this email are subject to the terms and conditions expressed in
the governing KPMG client engagement letter.
*****************************************************************************
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
