mailing list archives
RE: Wireless security question
From: "Gross Barry D." <bd.gross () hosp wisc edu>
Date: Thu, 23 Dec 2004 09:00:03 -0600
Its hard to enforce technically so I agree you should have some policy.
you could have a laptop dmz that this person gets connected to that has limited resources available to it. Also
depending on how deep your pockets are there is also software out there that can check to see if the wireless card is
disabled, if the laptop has patches, virus software..etc.
From: Steve [mailto:securityfocus () delahunty com]
Sent: Wednesday, December 22, 2004 4:56 PM
To: Marty; Sec Basic
Subject: Re: Wireless security question
Policy against wireless, including cards. Remove his wireless card.
One risk you have is his laptop latching on to hostile networks, once with worms/viruses, as well as the threat you
----- Original Message -----
From: "Marty" <groupecci () yahoo ca>
To: "Sec Basic" <security-basics () securityfocus com>
Sent: Wednesday, December 22, 2004 11:57 AM
Subject: Wireless security question
Here is a question for you...
We have a secure network with no wireless
One of our laptop came in with credentials to log
on to the network through the Ethernet cable BUT
the person had just added a wireless card to his
This situation actually came up and the person
could see external wireless networks (from other
companies around our building) and access
Internet through there. Yeah I know they're
stupid, but it's the real world!
This seems like a potential threat for taking our
data out the back door.
Copy files accessed through our network to
another network and voilà! No trace at all of the
We monitor internet access and block non-company
Email (Yahoo, Hotmail etc.).
Thanks and Happy Holidays!
Lèche-vitrine ou lèche-écran ?