[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Cisco ScanSafe, aka Cisco Cloud Web Security

Subject: Cisco ScanSafe, aka Cisco Cloud Web Security
From: streiner at cluebyfour.org (Justin M. Streiner)
Date: Wed, 4 Dec 2013 10:33:31 -0500 (EST)
In-reply-to: <CALgc3C42yOW8NpZ1bu9wUCONNkkXtOmcj=J00512TN+ACa+E1A@mail.gmail.com>
References: <CADkMbJbCnEMrSMbN6-82dD4DJ+TnMD5+T61h2DCZ1w-DdaGuSQ@mail.gmail.com> <CALgc3C42yOW8NpZ1bu9wUCONNkkXtOmcj=J00512TN+ACa+E1A@mail.gmail.com>

> First of all, why are you allowing or disallowing split tunnel networks ?
>
> There is always the risk that he/she may get infected with some malware
> that your antivirus does not recognize and it spreads through the internet
> network when the user VPNs to the corporate network.

>From what I've seen, many government agencies - particularly those 
that work with sensitive data - take a very risk-averse position when dealing
with remote access - if it is allowed at all.

Such networks also tend to be fairly compartmentalized out of necessity. 
Still the possibility of a breach that originated from a user that was 
VPN'd in and happened to open "not-infected-srsly.zip" gives IT admins in 
such environments more than a bit of heartburn.

jms

References:
- Cisco ScanSafe, aka Cisco Cloud Web Security
  - From: herro91 at gmail.com (Herro91)
- Cisco ScanSafe, aka Cisco Cloud Web Security
  - From: eugen at imacandi.net (Eugeniu Patrascu)

Prev by Date: blogs.cisco.com not available via IPv6
Next by Date: Cisco ScanSafe, aka Cisco Cloud Web Security
Previous by thread: Cisco ScanSafe, aka Cisco Cloud Web Security
Next by thread: Cisco ScanSafe, aka Cisco Cloud Web Security
Index(es):
- Date
- Thread