If you are a public company based in California, that houses medical records for children and also doubles as a financial institution, your risks are much greater than a private company based in Ohio that makes napkins. It depends on the company model. There are different means of protecting network access to devices. But those decisions are tied to the security model and weighed out to the business model. Like most security decisions, it all boils down how much risk the company is willing to take. That is really what defines security measures (or should).
_____ From: René de Haas [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 16, 2008 10:15 AM To: NT System Admin Issues Subject: RE: Security: Firewall on desktops that don't leave the company? I am not really opposed. I wanted to have opinions of people so I could learn more. Was just wondering how much more secure this would make us. You would put them on servers too? From: Louis, Joe [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 16, 2008 3:06 PM To: NT System Admin Issues Subject: RE: Security: Firewall on desktops that don't leave the company? Effective security requires multiple levels of protection. This is one of them. The perimeter firewall is another. I don't know the business you are in, but to think that just because you have a perimeter firewall makes you "safe" is a false sense of security. Perhaps the policy maker that decided that the company would go down this path feels there is something to protect. There's lots of reasons to do something like that. Why are you opposed? _____ From: René de Haas [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 16, 2008 8:00 AM To: NT System Admin Issues Subject: Security: Firewall on desktops that don't leave the company? Hi All, Asking for opinions. Was informed that we are going to put firewalls on desktop pc's as well, though there is a firewall at the perimeter of the network. One motivation was that with a pentest from the inside we would be more secure. Are you doing this as well? Arguments for/against. Thanks René _____ *** The information in this e-mail is confidential and intended solely for the individual or entity to whom it is addressed. If you have received this e-mail in error please notify the sender by return e-mail delete this e-mail and refrain from any disclosure or action based on the information. *** _____ *** The information in this e-mail is confidential and intended solely for the individual or entity to whom it is addressed. If you have received this e-mail in error please notify the sender by return e-mail delete this e-mail and refrain from any disclosure or action based on the information. *** ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
