On 26/06/2006, at 10:38 AM, Greg Twyford wrote:
I personally wouldn't use it 'bare' but would do so inside a VPN.
I've also spoken to the support manger at one division that
provides fee-for-service support, and they won't use it either.
Agree with your thoughts.
I'm increasingly convinced that a PPTP VPN offers little security and
is more trouble than it's worth, and that even an IPSec one is less
secure (for external access, not where you are in control of the two
LANs) in that you are opening up access to the entire internal face
of each LAN, including some pretty dangerous ports like MS File and
Printer sharing.
We have changed our standard to RDP or VNC over SSH access now, using
PKI authentication (password authentication is turned off), only
trouble is having to slightly drop the MTU on some cheap modems.
Peter.
_______________________________________________
Gpcg_talk mailing list
[email protected]
http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk
