×
The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.
It's more for bypassing the green screen telnet signon that passes the pwd
in clear text.
(or have they fixed this? this site running an old CA Express).
To my knowledge, this has not been fixed. Good idea that's been around for a while, as long as your users control access to their desktop.
Risk has been defined in many ways, but when looking at IT governance, I like this one: "the threat or probability that an action or event, will adversely or beneficially affect an organizations ability to achieve its objectives."
So, when looking at this from a risk assessment perspective, what is more likely to occur on the inside - a rogue user hooking a sniffer up to the network and snagging the port 23 clear text passwords, OR someone accessing another user's desktop while they're temporarily away and having the ability to fire up a CA session that doesn't force signon?
Best regards,
Steven W. Martinson, CISSP, CISM
Sheshunoff Management Services, LP.
Senior Consultant - Technology & Risk Management
2801 Via Fortuna, Suite 600 | Austin, TX 78746
Direct: 281.758.2429 | Mobile: 512.779.2630
e.Mail: smartinson@xxxxxxxxx
midrange.com
