RE: Management of ISA?

• From: "Eric Poole" <EPoole@xxxxxxxxxxxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Tue, 18 Jan 2005 10:26:12 -0800

Thanks Tom.  I'm going to start putting something together.

_______________________________________________
Eric Poole
Information Security Analyst
Community Medical Centers
1140 "T" Street, Fresno, California 93721
559-459-6784 (phone) 559-459-2045 (fax)
 

-----Original Message-----
From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx] 
Sent: Tuesday, January 18, 2005 10:00 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Management of ISA?

http://www.ISAserver.org

Hi E-pool,

I'm sure you'll get a lot of opinions on this, but if the network guys
think they never have to update or manage their devices, they're not
paying attention and you don't want the wrong people to know about that.
Although they may think that they're hardware draws mechanical
intelligence from the celestial bodies, that reality only exists in the
marketing dreamworld they Cisco vendors have provided them :)

It is definitley a NETWORK security device. So, if the network guys
aren't jiggy on security (and it sounds like they're not), then they
need to be, and the ISA firewall isn't going to be the hospital's only
security issue. I'd use this as an opportunity to demonstrate the
security benefits of the ISA firewall.

HTH,
Tom 

-----Original Message-----
From: epoole@xxxxxxxxxxxxxxxxxxxx [mailto:epoole@xxxxxxxxxxxxxxxxxxxx]
Sent: Tuesday, January 18, 2005 11:54 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Management of ISA?

http://www.ISAserver.org

I know I've probably asked this before, but we've got a bit of turmoil
between our Network team and Information Security.  Which Group should
manage ISA?  Our Network team is not security minded, have no interest
in security and are not disciplined in any way.  I know I may sound
biased, but in Information Security we have had ISA Server 2000 running
with Surf Control and no downtimes for about 2 years.  It's constantly
patched, updated (we currently have ISA Server 2004 in testing), logs
reviewed, etc.  Anyway, I got blindsided yesterday.  The Network team
feels it is more of a network device as opposed to a security device and
want to take over administration.  Our Director has asked that we
prepare something that demonstrates where ISA should belong.  So, I
thought I would ask the experts.  Side note - Unfortunately, we only use
ISA as an authenticating proxy and limited firewall.  The network team
has yet to build ISA into their architecture.

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com Leading
Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com Leading
Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
epoole@xxxxxxxxxxxxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx


-------------------------------------------------------
WARNING/CONFIDENTIAL: 
-------------------------------------------------------
This email, including attachments, may contain information that is privileged, 
confidential, and/or exempt from disclosure under applicable law (including, 
but not limited to, protected health information).  It is not intended for 
transmission to, or receipt by, any unauthorized persons.  If the reader of 
this message is not the intended recipient you are hereby notified that any 
dissemination, distribution or copying of this communication is strictly 
prohibited.  If you believe this email was sent to you in error, do not read 
it.   Reply to the sender informing them of the error and then destroy all 
copies and attachments of the message from your system.   Thank you.

Other related posts:

• » Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » RE: Management of ISA?
• » Re: Management of ISA?

1. Home
2. isalist
3. Archive
4. 01-2005

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---