Network Security: Detailed info on Re: Notebook policy (need advice)

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Security-Basics

[Top] [All Lists]

Re: Notebook policy (need advice)

from [Ansgar -59cobalt- Wiechers] Network Security

[Permanent Link]

Subject:	Re: Notebook policy (need advice)
Date:	Fri, 26 Jan 2007 21:25:51 +0100

On 2007-01-25 Eric Furman wrote:

I'll give you one very simple policy that you should enforce that will
make most of your concerns moot:

NEVER EVER EVER STORE SENSITIVE DATA ON A LAPTOP!

Anybody, and I mean ANYBODY, found with sensitive data on their laptop
should have it seized and they should be immediately dismissed.

There is virtually no reason to ever store sensitive data on a laptop.
Sensitive data should only ever reside on hardened servers in a
physically secured server room. If your employees need to work with
this data there are several means to securely access this data
remotely.


Just take your average insurance salesman. How do you guarantee that he
has remote access from everywhere he may make a contract?

cu
59cobalt
-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Notebook policy (need advice), (continued) RE: Notebook policy (need advice), Pranav Lal RE: Notebook policy (need advice), Tony UcedaVélez RE: Notebook policy (need advice), Eric Furman RE: Notebook policy (need advice), Patton Roub RE: Notebook policy (need advice), Eric Furman RE: Notebook policy (need advice), Huang, John, GCM Re: Notebook policy (need advice), Eric White Re: Notebook policy (need advice), Eric Furman RE: Notebook policy (need advice), Sipes, Bob RE: Notebook policy (need advice), Sipes, Bob Re: Notebook policy (need advice), Ansgar -59cobalt- Wiechers <= Re: Notebook policy (need advice), Artur Baruchi Re: list of university hacked in 2006, jam Re: list of university hacked in 2006, peresrod Re: list of university hacked in 2006, anonymous

Previous by Date:	Re: Notebook policy (need advice), Eric Furman
Next by Date:	Sample application to learn application security, Anurag Agarwal
Previous by Thread:	RE: Notebook policy (need advice), Sipes, Bob
Next by Thread:	Re: Notebook policy (need advice), Artur Baruchi
Indexes:	[Date] [Thread] [Top] [All Lists]