tell me the risks of a non company pc/laptop on company lan

Networking/Security Forums -> Networking

Author: bdoyle13 PostPosted: Fri Oct 01, 2010 8:34 pm    Post subject: tell me the risks of a non company pc/laptop on company lan
    ----
To settle a discussion at work today, can anyone tell me the risks if any of putting a non company pc/laptop on LAN

Imagine I work for abc ltd

A visitor (does not work for abc ltd) meets someone in abc ltd offices ,connects a network cable into his laptop, boots up laptop, he will get an ip address from DHCP server, once he has an ip address , what can he do

Could he get to our system, other pc's on LAN, servers , routers etc

Imagine he has/trojan on laptop, can this infect our interfere with our systems

Using a simple ipconfig command he can get his ip address , and can easily guess other ip addresses

Author: operat0r2 PostPosted: Tue Oct 05, 2010 8:19 pm    Post subject:
    ----
Got buy Hacking Exposed and read it front to back to put it simply yes both the company and the user .. think of it as letting the user into the company and allowing them to wonder around and take things or the comapny takes your stuff and wonders your computer /traffic looking for stuff

Author: atwood PostPosted: Fri Nov 12, 2010 10:11 pm    Post subject:
    ----
Yes, there is an inherant risk of letting someone connect to the company network on a machine that has not been "vetted". But quite a few companies do allow this.

You could mitigate the possibility of rogue software infecting your network by creating a separate VLAN for this use and using access lists on the routers to prevent traffic from this vlan from leaving any other router (or switch) port and basically just allow it to access the internet.



Networking/Security Forums -> Networking


output generated using printer-friendly topic mod, All times are GMT + 2 Hours

Page 1 of 1

Powered by phpBB 2.0.x © 2001 phpBB Group