[26986] in resnet
Re: Do we still need Network Access Control?
daemon@ATHENA.MIT.EDU (Peter P Morrissey)
Fri Nov 4 13:42:43 2011
Content-Language: en-US
Content-Type: multipart/alternative; boundary="_000_47FE4CC0B92ADA478ECC286A11E973010603EDSUEX10mbx03adsyre_"
MIME-Version: 1.0
Message-ID: <47FE4CC0B92ADA478ECC286A11E973010603ED@SUEX10-mbx-03.ad.syr.edu>
Date: Fri, 4 Nov 2011 17:39:44 +0000
Reply-To: Resnet Forum <RESNET-L@listserv.nd.edu>
From: Peter P Morrissey <ppmorris@syr.edu>
To: RESNET-L@listserv.nd.edu
In-Reply-To: <755A73D3547BAE429728E2EC2AEDC605E39A36FBA3@EXMAIL.csuchico.edu>
--_000_47FE4CC0B92ADA478ECC286A11E973010603EDSUEX10mbx03adsyre_
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
I think that is a great question! We haven't but I have fantasized about it=
. You make the great point that when Blaster and its variants brought down =
networks, we did not have firewalls turned on by default. Now we do. That a=
lone probably would have prevented a lot of the chaos. It also seems to be =
the case the AV software just doesn't really catch most of the malware issu=
es we see nowadays.
Pete M.
From: Resnet Forum [mailto:RESNET-L@LISTSERV.ND.EDU] On Behalf Of Richter, =
Ryan
Sent: Friday, November 04, 2011 1:25 PM
To: RESNET-L@LISTSERV.ND.EDU
Subject: Do we still need Network Access Control?
Hi folks,
In the wake of 2003 with Blaster and other worms spreading through unpatche=
d systems like wildfire we made the decision to purchase a Network Access C=
ontrol product (Cisco's Clean Access). In the following years, with OS patc=
h and antivirus enforcement, malware was definitely less of a problem. CCA =
did its job.
But these days, with operating systems automatically downloading and instal=
ling patches by default, Windows firewall on by default, do you think a Net=
work Access Control solution is still necessary? The cost and support of th=
ese solutions is not trivial.
Malware continues to be a relatively small issue in our residence halls, bu=
t I'm no longer sure it's because of our NAC policies, or because of better=
operating systems.
Has anyone ditched their NAC solution and tested these waters?
If you don't have NAC in your residence halls, what's it like? Is malware a=
big problem?
Thanks and happy Friday,
-Ryan
Ryan Richter
IT Support Services
California State University, Chico
___________________________________________________ You are subscribed to t=
he ResNet-L mailing list.
To subscribe, unsubscribe or search the archives, go to http://LISTSERV.ND.=
EDU/archives/resnet-l.html ________________________________________________=
___
___________________________________________________
You are subscribed to the ResNet-L mailing list.
To subscribe, unsubscribe or search the archives,
go to http://LISTSERV.ND.EDU/archives/resnet-l.html
___________________________________________________
--_000_47FE4CC0B92ADA478ECC286A11E973010603EDSUEX10mbx03adsyre_
Content-Type: text/html; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-micr=
osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:x=3D"urn:schemas-microsoft-com:office:excel" xmlns:p=3D"urn:schemas-m=
icrosoft-com:office:powerpoint" xmlns:a=3D"urn:schemas-microsoft-com:office=
:access" xmlns:dt=3D"uuid:C2F41010-65B3-11d1-A29F-00AA00C14882" xmlns:s=3D"=
uuid:BDC6E3F0-6DA3-11d1-A2A3-00AA00C14882" xmlns:rs=3D"urn:schemas-microsof=
t-com:rowset" xmlns:z=3D"#RowsetSchema" xmlns:b=3D"urn:schemas-microsoft-co=
m:office:publisher" xmlns:ss=3D"urn:schemas-microsoft-com:office:spreadshee=
t" xmlns:c=3D"urn:schemas-microsoft-com:office:component:spreadsheet" xmlns=
:odc=3D"urn:schemas-microsoft-com:office:odc" xmlns:oa=3D"urn:schemas-micro=
soft-com:office:activation" xmlns:html=3D"http://www.w3.org/TR/REC-html40" =
xmlns:q=3D"http://schemas.xmlsoap.org/soap/envelope/" xmlns:rtc=3D"http://m=
icrosoft.com/officenet/conferencing" xmlns:D=3D"DAV:" xmlns:Repl=3D"http://=
schemas.microsoft.com/repl/" xmlns:mt=3D"http://schemas.microsoft.com/share=
point/soap/meetings/" xmlns:x2=3D"http://schemas.microsoft.com/office/excel=
/2003/xml" xmlns:ppda=3D"http://www.passport.com/NameSpace.xsd" xmlns:ois=
=3D"http://schemas.microsoft.com/sharepoint/soap/ois/" xmlns:dir=3D"http://=
schemas.microsoft.com/sharepoint/soap/directory/" xmlns:ds=3D"http://www.w3=
.org/2000/09/xmldsig#" xmlns:dsp=3D"http://schemas.microsoft.com/sharepoint=
/dsp" xmlns:udc=3D"http://schemas.microsoft.com/data/udc" xmlns:xsd=3D"http=
://www.w3.org/2001/XMLSchema" xmlns:sub=3D"http://schemas.microsoft.com/sha=
repoint/soap/2002/1/alerts/" xmlns:ec=3D"http://www.w3.org/2001/04/xmlenc#"=
xmlns:sp=3D"http://schemas.microsoft.com/sharepoint/" xmlns:sps=3D"http://=
schemas.microsoft.com/sharepoint/soap/" xmlns:xsi=3D"http://www.w3.org/2001=
/XMLSchema-instance" xmlns:udcs=3D"http://schemas.microsoft.com/data/udc/so=
ap" xmlns:udcxf=3D"http://schemas.microsoft.com/data/udc/xmlfile" xmlns:udc=
p2p=3D"http://schemas.microsoft.com/data/udc/parttopart" xmlns:wf=3D"http:/=
/schemas.microsoft.com/sharepoint/soap/workflow/" xmlns:dsss=3D"http://sche=
mas.microsoft.com/office/2006/digsig-setup" xmlns:dssi=3D"http://schemas.mi=
crosoft.com/office/2006/digsig" xmlns:mdssi=3D"http://schemas.openxmlformat=
s.org/package/2006/digital-signature" xmlns:mver=3D"http://schemas.openxmlf=
ormats.org/markup-compatibility/2006" xmlns:m=3D"http://schemas.microsoft.c=
om/office/2004/12/omml" xmlns:mrels=3D"http://schemas.openxmlformats.org/pa=
ckage/2006/relationships" xmlns:spwp=3D"http://microsoft.com/sharepoint/web=
partpages" xmlns:ex12t=3D"http://schemas.microsoft.com/exchange/services/20=
06/types" xmlns:ex12m=3D"http://schemas.microsoft.com/exchange/services/200=
6/messages" xmlns:pptsl=3D"http://schemas.microsoft.com/sharepoint/soap/Sli=
deLibrary/" xmlns:spsl=3D"http://microsoft.com/webservices/SharePointPortal=
Server/PublishedLinksService" xmlns:Z=3D"urn:schemas-microsoft-com:" xmlns:=
st=3D"" xmlns=3D"http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dus-ascii"=
>
<meta name=3D"Generator" content=3D"Microsoft Word 12 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
span.EmailStyle17
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:windowtext;}
span.EmailStyle19
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=3D"EN-US" link=3D"blue" vlink=3D"purple">
<div class=3D"WordSection1">
<p class=3D"MsoNormal"><span style=3D"color:#1F497D">I think that is a grea=
t question! We haven’t but I have fantasized about it. You make the g=
reat point that when Blaster and its variants brought down networks, we did=
not have firewalls turned on by default.
Now we do. That alone probably would have prevented a lot of the chaos. It=
also seems to be the case the AV software just doesn’t really catch =
most of the malware issues we see nowadays.
<o:p></o:p></span></p>
<p class=3D"MsoNormal"><span style=3D"color:#1F497D"><o:p> </o:p></spa=
n></p>
<p class=3D"MsoNormal"><span style=3D"color:#1F497D">Pete M.<o:p></o:p></sp=
an></p>
<p class=3D"MsoNormal"><span style=3D"color:#1F497D"><o:p> </o:p></spa=
n></p>
<div>
<div style=3D"border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in =
0in 0in">
<p class=3D"MsoNormal"><b><span style=3D"font-size:10.0pt;font-family:"=
;Tahoma","sans-serif"">From:</span></b><span style=3D"font-s=
ize:10.0pt;font-family:"Tahoma","sans-serif""> Resnet F=
orum [mailto:RESNET-L@LISTSERV.ND.EDU]
<b>On Behalf Of </b>Richter, Ryan<br>
<b>Sent:</b> Friday, November 04, 2011 1:25 PM<br>
<b>To:</b> RESNET-L@LISTSERV.ND.EDU<br>
<b>Subject:</b> Do we still need Network Access Control?<o:p></o:p></span><=
/p>
</div>
</div>
<p class=3D"MsoNormal"><o:p> </o:p></p>
<p class=3D"MsoNormal">Hi folks,<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p> </o:p></p>
<p class=3D"MsoNormal">In the wake of 2003 with Blaster and other worms spr=
eading through unpatched systems like wildfire we made the decision to purc=
hase a Network Access Control product (Cisco’s Clean Access). In the =
following years, with OS patch and antivirus
enforcement, malware was definitely less of a problem. CCA did its job.<o:=
p></o:p></p>
<p class=3D"MsoNormal"><o:p> </o:p></p>
<p class=3D"MsoNormal">But these days, with operating systems automatically=
downloading and installing patches by default, Windows firewall on by defa=
ult, do you think a Network Access Control solution is still necessary? The=
cost and support of these solutions
is not trivial.<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p> </o:p></p>
<p class=3D"MsoNormal">Malware continues to be a relatively small issue in =
our residence halls, but I’m no longer sure it’s because of our=
NAC policies, or because of better operating systems.<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p> </o:p></p>
<p class=3D"MsoNormal">Has anyone ditched their NAC solution and tested the=
se waters?<o:p></o:p></p>
<p class=3D"MsoNormal">If you don’t have NAC in your residence halls,=
what’s it like? Is malware a big problem?<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p> </o:p></p>
<p class=3D"MsoNormal">Thanks and happy Friday,<o:p></o:p></p>
<p class=3D"MsoNormal">-Ryan<o:p></o:p></p>
<p class=3D"MsoNormal"><o:p> </o:p></p>
<p class=3D"MsoNormal"><span style=3D"color:gray">Ryan Richter<o:p></o:p></=
span></p>
<p class=3D"MsoNormal"><span style=3D"color:gray">IT Support Services<o:p><=
/o:p></span></p>
<p class=3D"MsoNormal"><span style=3D"color:gray">California State Universi=
ty, Chico<o:p></o:p></span></p>
<p class=3D"MsoNormal"><span style=3D"font-size:12.0pt;font-family:"Ti=
mes New Roman","serif"">____________________________________=
_______________ You are subscribed to the ResNet-L mailing list.
<o:p></o:p></span></p>
<p>To subscribe, unsubscribe or search the archives, go to http://LISTSERV.=
ND.EDU/archives/resnet-l.html _____________________________________________=
______
<o:p></o:p></p>
</div>
</body>
</html>
___________________________________________________
You are subscribed to the ResNet-L mailing list.
<p>
To subscribe, unsubscribe or search the archives,
go to http://LISTSERV.ND.EDU/archives/resnet-l.html
___________________________________________________
--_000_47FE4CC0B92ADA478ECC286A11E973010603EDSUEX10mbx03adsyre_--
