[26996] in resnet
Re: Do we still need Network Access Control?
daemon@ATHENA.MIT.EDU (Randall C Grimshaw)
Fri Nov 4 16:47:50 2011
Content-Language: en-US
Content-Type: multipart/alternative; boundary="_000_E026853FAE2E5E47BE78B287F89DAF9E048EBCSUEX10mbx03adsyre_"
MIME-Version: 1.0
Message-ID: <E026853FAE2E5E47BE78B287F89DAF9E048EBC@SUEX10-mbx-03.ad.syr.edu>
Date: Fri, 4 Nov 2011 20:43:11 +0000
Reply-To: Resnet Forum <RESNET-L@listserv.nd.edu>
From: Randall C Grimshaw <rgrimsha@SYR.EDU>
To: RESNET-L@listserv.nd.edu
In-Reply-To: <755A73D3547BAE429728E2EC2AEDC605E39A36FBA3@EXMAIL.csuchico.edu>
--_000_E026853FAE2E5E47BE78B287F89DAF9E048EBCSUEX10mbx03adsyre_
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
Fry Day Indeed.
I think we need to discuss Access Control and Compliance Checking separatel=
y.
With Access Control you have the ability to identify and quarantine machine=
s on your network. Where this is accomplished is a difficult architectural =
question, but it needs to be a tool in your quiver - not just for malware, =
but also abuse / illegal activity.
Compliance checking is becoming less of an issue in my opinion... in part b=
ecause the 'bad guys' are financially motivated to keep the network up. And=
in part because users are migrating to mobile computing appliances. When I=
DS systems identify a compromised system, you are back to the Access Contro=
l issue.
Randall Grimshaw rgrimsha@syr.edu<mailto:rgrimsha@syr.edu>
________________________________
From: Resnet Forum [RESNET-L@LISTSERV.ND.EDU] on behalf of Richter, Ryan [r=
richter@csuchico.edu]
Sent: Friday, November 04, 2011 1:24 PM
To: RESNET-L@LISTSERV.ND.EDU
Subject: Do we still need Network Access Control?
Hi folks,
In the wake of 2003 with Blaster and other worms spreading through unpatche=
d systems like wildfire...
Has anyone ditched their NAC solution and tested these waters?
If you don=92t have NAC in your residence halls, what=92s it like? Is malwa=
re a big problem?
Thanks and happy Friday,
-Ryan
Ryan Richter
IT Support Services
California State University, Chico
___________________________________________________ You are subscribed to t=
he ResNet-L mailing list.
To subscribe, unsubscribe or search the archives, go to http://LISTSERV.ND.=
EDU/archives/resnet-l.html ________________________________________________=
___
___________________________________________________
You are subscribed to the ResNet-L mailing list.
To subscribe, unsubscribe or search the archives,
go to http://LISTSERV.ND.EDU/archives/resnet-l.html
___________________________________________________
--_000_E026853FAE2E5E47BE78B287F89DAF9E048EBCSUEX10mbx03adsyre_
Content-Type: text/html; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
<html dir=3D"ltr">
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3DWindows-1=
252">
<style>=0A=
<!--=0A=
@font-face=0A=
{font-family:Calibri}=0A=
p.MsoNormal, li.MsoNormal, div.MsoNormal=0A=
{margin:0in;=0A=
margin-bottom:.0001pt;=0A=
font-size:11.0pt;=0A=
font-family:"Calibri","sans-serif"}=0A=
a:link, span.MsoHyperlink=0A=
{color:blue;=0A=
text-decoration:underline}=0A=
a:visited, span.MsoHyperlinkFollowed=0A=
{color:purple;=0A=
text-decoration:underline}=0A=
span.EmailStyle17=0A=
{font-family:"Calibri","sans-serif";=0A=
color:windowtext}=0A=
.MsoChpDefault=0A=
{font-family:"Calibri","sans-serif"}=0A=
@page WordSection1=0A=
{margin:1.0in 1.0in 1.0in 1.0in}=0A=
-->=0A=
</style><style id=3D"owaParaStyle" type=3D"text/css">P {margin-top:0;margin=
-bottom:0;}</style>
</head>
<body ocsi=3D"0" fpstyle=3D"1" lang=3D"EN-US" link=3D"blue" vlink=3D"purple=
">
<div style=3D"direction: ltr;font-family: Tahoma;color: #000000;font-size: =
10pt;">Fry Day Indeed.<br>
<br>
I think we need to discuss Access Control and Compliance Checking separatel=
y.<br>
<br>
With Access Control you have the ability to identify and quarantine machine=
s on your network. Where this is accomplished is a difficult architectural =
question, but it needs to be a tool in your quiver - not just for malware, =
but also abuse / illegal activity.<br>
<br>
Compliance checking is becoming less of an issue in my opinion... in part b=
ecause the 'bad guys' are financially motivated to keep the network up. And=
in part because users are migrating to mobile computing appliances. When I=
DS systems identify a compromised
system, you are back to the Access Control issue.<br>
<div><br>
<div><font face=3D"Tahoma" size=3D"2">Randall Grimshaw <a href=3D"mailto:rg=
rimsha@syr.edu">
rgrimsha@syr.edu</a></font></div>
<div> </div>
</div>
<div style=3D"font-family: Times New Roman; color: rgb(0, 0, 0); font-size:=
16px;">
<hr tabindex=3D"-1">
<div style=3D"direction: ltr;" id=3D"divRpF1373"><font color=3D"#000000" fa=
ce=3D"Tahoma" size=3D"2"><b>From:</b> Resnet Forum [RESNET-L@LISTSERV.ND.ED=
U] on behalf of Richter, Ryan [rrichter@csuchico.edu]<br>
<b>Sent:</b> Friday, November 04, 2011 1:24 PM<br>
<b>To:</b> RESNET-L@LISTSERV.ND.EDU<br>
<b>Subject:</b> Do we still need Network Access Control?<br>
</font><br>
</div>
<div></div>
<div>
<div class=3D"WordSection1">
<p class=3D"MsoNormal">Hi folks,</p>
<p class=3D"MsoNormal"> </p>
<p class=3D"MsoNormal">In the wake of 2003 with Blaster and other worms spr=
eading through unpatched systems like wildfire...</p>
<p class=3D"MsoNormal"> </p>
<p class=3D"MsoNormal">Has anyone ditched their NAC solution and tested the=
se waters?</p>
<p class=3D"MsoNormal">If you don=92t have NAC in your residence halls, wha=
t=92s it like? Is malware a big problem?</p>
<p class=3D"MsoNormal"> </p>
<p class=3D"MsoNormal">Thanks and happy Friday,</p>
<p class=3D"MsoNormal">-Ryan</p>
<p class=3D"MsoNormal"> </p>
<p class=3D"MsoNormal"><span style=3D"color: gray;">Ryan Richter</span></p>
<p class=3D"MsoNormal"><span style=3D"color: gray;">IT Support Services</sp=
an></p>
<p class=3D"MsoNormal"><span style=3D"color: gray;">California State Univer=
sity, Chico</span></p>
</div>
___________________________________________________ You are subscribed to t=
he ResNet-L mailing list.
<p>To subscribe, unsubscribe or search the archives, go to http://LISTSERV.=
ND.EDU/archives/resnet-l.html _____________________________________________=
______
</p>
</div>
</div>
</div>
</body>
</html>
___________________________________________________
You are subscribed to the ResNet-L mailing list.
<p>
To subscribe, unsubscribe or search the archives,
go to http://LISTSERV.ND.EDU/archives/resnet-l.html
___________________________________________________
--_000_E026853FAE2E5E47BE78B287F89DAF9E048EBCSUEX10mbx03adsyre_--
