{"id":47,"date":"2007-07-06T12:27:24","date_gmt":"2007-07-06T11:27:24","guid":{"rendered":"http:\/\/www.myfatblog.co.uk\/?p=47"},"modified":"2021-11-01T09:23:55","modified_gmt":"2021-11-01T09:23:55","slug":"remote-working-security-nightmare","status":"publish","type":"post","link":"http:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/","title":{"rendered":"Remote working &#8211; Security nightmare&#8230;."},"content":{"rendered":"<p>Well one of the things that cropped up during the review of the product is that staff want to be able to work from home.. Guess what, this wans&#8217;t in the original spec which stated that the application should be secure and only allow certain users access to certain functions. We also decided to hire<a href=\"https:\/\/www.missionsecure.com\/ot-cybersecurity\">\u00a0ot security vendors<\/a> and keep the online security tight.<\/p>\n<p>Well to keep things simple, we decided to use LDAP queries to confirm user name against Active Directory groups. These work simply and efficiently across the network and doesn&#8217;t cause a problem. Now, introduce a home user, connected on his own Broadband connection via a VN tunneling application.<\/p>\n<p>I can telnet to my AD servers on the LDAP port and I can telnet to the SQL server on 1433, What I can&#8217;t do is an LDAP DNS query to the internal server address because this goes off to my own broadband Providers DNS!<\/p>\n<p>The Netmon traces show DNS queries for our domain, so need to find a way to intercept these with the Secure Application Manager to send them down the VPN, rather than allow them out to the internet.<\/p>\n<p>As ever.. Watch this space.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Well one of the things that cropped up during the review of the product is that staff want to be able to work from home.. Guess what, this wans&#8217;t in the original spec which stated that the application should be secure and only allow certain users access to certain functions. We also decided to hire\u00a0ot &hellip; <\/p>\n<p><a class=\"more-link btn\" href=\"http:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/\">Continue reading<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"footnotes":""},"categories":[14,15,7,18],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.3 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Remote working - Security nightmare.... - Blog of an overweight SharePoint addict<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Remote working - Security nightmare.... - Blog of an overweight SharePoint addict\" \/>\n<meta property=\"og:description\" content=\"Well one of the things that cropped up during the review of the product is that staff want to be able to work from home.. Guess what, this wans&#8217;t in the original spec which stated that the application should be secure and only allow certain users access to certain functions. We also decided to hire\u00a0ot &hellip; Continue reading\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog of an overweight SharePoint addict\" \/>\n<meta property=\"article:published_time\" content=\"2007-07-06T11:27:24+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-11-01T09:23:55+00:00\" \/>\n<meta name=\"author\" content=\"Cimares\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@cimares\" \/>\n<meta name=\"twitter:site\" content=\"@cimares\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Cimares\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/\",\"url\":\"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/\",\"name\":\"Remote working - Security nightmare.... - Blog of an overweight SharePoint addict\",\"isPartOf\":{\"@id\":\"http:\/\/www.myfatblog.co.uk\/#website\"},\"datePublished\":\"2007-07-06T11:27:24+00:00\",\"dateModified\":\"2021-11-01T09:23:55+00:00\",\"author\":{\"@id\":\"http:\/\/www.myfatblog.co.uk\/#\/schema\/person\/55ae8f6885bb5b8390dad001f3da83c6\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/\"]}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/www.myfatblog.co.uk\/#website\",\"url\":\"http:\/\/www.myfatblog.co.uk\/\",\"name\":\"Blog of an overweight SharePoint addict\",\"description\":\"The rantings of a (not so) food obsessed IT consultant!\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/www.myfatblog.co.uk\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"http:\/\/www.myfatblog.co.uk\/#\/schema\/person\/55ae8f6885bb5b8390dad001f3da83c6\",\"name\":\"Cimares\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"http:\/\/www.myfatblog.co.uk\/#\/schema\/person\/image\/\",\"url\":\"http:\/\/www.myfatblog.co.uk\/images\/BlogImages\/About_D057\/TopOfTheWorld.jpg\",\"contentUrl\":\"http:\/\/www.myfatblog.co.uk\/images\/BlogImages\/About_D057\/TopOfTheWorld.jpg\",\"caption\":\"Cimares\"},\"sameAs\":[\"http:\/\/www.myfatblog.co.uk\"],\"url\":\"http:\/\/www.myfatblog.co.uk\/index.php\/author\/reginald\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Remote working - Security nightmare.... - Blog of an overweight SharePoint addict","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/","og_locale":"en_US","og_type":"article","og_title":"Remote working - Security nightmare.... - Blog of an overweight SharePoint addict","og_description":"Well one of the things that cropped up during the review of the product is that staff want to be able to work from home.. Guess what, this wans&#8217;t in the original spec which stated that the application should be secure and only allow certain users access to certain functions. We also decided to hire\u00a0ot &hellip; Continue reading","og_url":"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/","og_site_name":"Blog of an overweight SharePoint addict","article_published_time":"2007-07-06T11:27:24+00:00","article_modified_time":"2021-11-01T09:23:55+00:00","author":"Cimares","twitter_card":"summary_large_image","twitter_creator":"@cimares","twitter_site":"@cimares","twitter_misc":{"Written by":"Cimares","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/","url":"https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/","name":"Remote working - Security nightmare.... - Blog of an overweight SharePoint addict","isPartOf":{"@id":"http:\/\/www.myfatblog.co.uk\/#website"},"datePublished":"2007-07-06T11:27:24+00:00","dateModified":"2021-11-01T09:23:55+00:00","author":{"@id":"http:\/\/www.myfatblog.co.uk\/#\/schema\/person\/55ae8f6885bb5b8390dad001f3da83c6"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.myfatblog.co.uk\/index.php\/2007\/07\/remote-working-security-nightmare\/"]}]},{"@type":"WebSite","@id":"http:\/\/www.myfatblog.co.uk\/#website","url":"http:\/\/www.myfatblog.co.uk\/","name":"Blog of an overweight SharePoint addict","description":"The rantings of a (not so) food obsessed IT consultant!","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/www.myfatblog.co.uk\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"http:\/\/www.myfatblog.co.uk\/#\/schema\/person\/55ae8f6885bb5b8390dad001f3da83c6","name":"Cimares","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"http:\/\/www.myfatblog.co.uk\/#\/schema\/person\/image\/","url":"http:\/\/www.myfatblog.co.uk\/images\/BlogImages\/About_D057\/TopOfTheWorld.jpg","contentUrl":"http:\/\/www.myfatblog.co.uk\/images\/BlogImages\/About_D057\/TopOfTheWorld.jpg","caption":"Cimares"},"sameAs":["http:\/\/www.myfatblog.co.uk"],"url":"http:\/\/www.myfatblog.co.uk\/index.php\/author\/reginald\/"}]}},"_links":{"self":[{"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/47"}],"collection":[{"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/comments?post=47"}],"version-history":[{"count":1,"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/47\/revisions"}],"predecessor-version":[{"id":1635,"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/47\/revisions\/1635"}],"wp:attachment":[{"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/media?parent=47"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/categories?post=47"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.myfatblog.co.uk\/index.php\/wp-json\/wp\/v2\/tags?post=47"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}