|
Posted by on October 12, 2007, 5:16 am
If you were Registered and logged in, you could reply and use other advanced thread options
> I wouldn't recommend a separate server. Now you have to deal with
> synchronization issues and you'll always wonder whether the data on the
> second server is up-to-date. Besides, it still won't solve the root problem:
> ensuring that these laptops aren't the source of any malware.
>
> Instead, I'd recommend standard best practices. Join their computers to your
> domain, have the users log on using standard domain user accounts (_not_
> local administrator accounts), use group policy to ensure that the Windows
> Firewall is switched on at all times, and install anti-virus and
> anti-spyware (like Forefront Client Security).
>
> Keep the computers secure when they're on the Internet, and they won't be
> sources of problems when they connect to your corporate resources. What I've
> just described is how many organizations, including Microsoft ourselves,
> keep their environments secure.
>
> --
> Steve Riley
>
steve.ri...@microsoft.comhttp://blogs.technet.com/sterileyhttp://www.protectyourwindowsnetwork.com
>
>
>
>
>
> > We have a lot of guys in our company that work out on site nearly all
> > the time, using an unrestricted Internet connection. Because of this
> > never allow them on our company network, as due to all our precautions
> > with antiviruses etc, we still cannot be certain they do not have any
> > viruses or malware on their laptops. However, it has now been decided
> > that when they are in the office, they need access to certain files
> > contained on our file server. What's the most secure way of doing
> > this? My boss is talking about building a second network for them to
> > use, with file server that reguarly syncronises with our file server.
> > However, there must be a better way of doing it than that. Thanks.- Hide
quoted text -
>
> - Show quoted text -
Thanks for your ideas guys. Much appreciated.
| 
XML site map