Quote:
Originally Posted by Axeman
+1 also on the "It depends".
I manage a global network for a large company but because we're a media/software company, usually all outbound traffic to the Internet is allowed because our users need to get to sites like Youtube, and everything else you can imagine. Obviously if it was a financial institution or the military, everything would be locked down.
|
We're somewhere in the middle. We shouldn't be wide open, but we don't need to be locked down like the military or a financial institution. I don't think a proxy is a bad idea. The security team here has a web filter, but a proxy/filter seems like a better idea, and we have host antivirus (I doubt it's effectiveness). They've also disabled the ability to turn on auto-updates in Windows which would be fine except that they don't update for us very often.
This is going to be a mess. When they lock down the PCs all hell is going to break loose, but I agree with having them locked down. I certainly don't trust the average corp user with a PC. We've got a VP or something somewhere that wants to use his personal MAC as his corp PC, and I'm amazed that no one has told him "NO".
__________________
Steve
'08 Boxster RS60 Spyder #0099/1960
- never named a car before, but this is Charlotte.
'88 targa
SOLD 2004 - gone but not forgotten