RE: ISA VPN Security

  • From: "Thomas W Shinder" <tshinder@xxxxxxxxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Wed, 29 Jan 2003 13:02:28 -0600

Hi John,
 
Isn't a user name of "Adminstrator" and a password of "password" strong
enough? ;-)
 
Tom
 
Thomas W Shinder
www.isaserver.org/shinder <http://www.isaserver.org/shinder>  
ISA Server and Beyond: http://tinyurl.com/1jq1 <http://tinyurl.com/1jq1>

Configuring ISA Server: http://tinyurl.com/1llp
<http://tinyurl.com/1llp> 

 
 

        -----Original Message-----
        From: John Tolmachoff [mailto:isalist@xxxxxxxxxxxx] 
        Sent: Wednesday, January 29, 2003 12:49 PM
        To: [ISAserver.org Discussion List]
        Subject: [isalist] RE: ISA VPN Security
        
        
        http://www.ISAserver.org
        
        

        1.      If they do not need the domain name, something is wrong.

        2.      Strong password policy. 
        3.      Use certificates. 

         

        John Tolmachoff MCSE, CSSA

        IT Manager, Network Engineer

        RelianceSoft, Inc.

        Fullerton, CA  92835

        www.reliancesoft.com

         

        -----Original Message-----
        From: Mark Hopkins [mailto:mark@xxxxxxxxxxxxx] 
        Sent: Wednesday, January 29, 2003 10:40 AM
        To: [ISAserver.org Discussion List]
        Subject: [isalist] ISA VPN Security

         

        http://www.ISAserver.org

        Hello,

         

        I just set up my ISA Server for inbound VPN calls, as per
http://www.isaserver.org/tutorials/Configuring_ISA_Server_For_Inbound_VP
N_Calls.html. Everything works but my concern is security. All anyone
need do is guess an authentic domain username/password and they are
"in". Not even the domain name is necessary. Is there a way to secure
this authentication? Thanks.

         

        Mark

        ------------------------------------------------------
        List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
        ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
        ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
        ------------------------------------------------------
        Exchange Server Resource Site: http://www.msexchange.org/
        Windows Security Resource Site: http://www.windowsecurity.com/
        Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
        ------------------------------------------------------
        You are currently subscribed to this ISAserver.org Discussion
List as: isalist@xxxxxxxxxxxx
        To unsubscribe send a blank email to
$subst('Email.Unsub') 

        ------------------------------------------------------
        List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
        ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
        ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
        ------------------------------------------------------
        Exchange Server Resource Site: http://www.msexchange.org/
        Windows Security Resource Site: http://www.windowsecurity.com/
        Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
        ------------------------------------------------------
        You are currently subscribed to this ISAserver.org Discussion
List as: tshinder@xxxxxxxxxxxxxxxxxx
        To unsubscribe send a blank email to
$subst('Email.Unsub')

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 01-2003