This message is not archived

This message is not archived

This message is not archived

"Leythos" <void.RemoveThis@nowhere.lan> wrote in message
news:MPG.1c4f83f0301e3365989eea@news-server.columbus.rr.com...
> > >
> > Thanks, Greg. And they probably will be a bit paranoid about this. Our
> > systems and procedures have to satisfy DoD requirements.
>
> Then you can do like he said and set the firewall such that not only do
> they need a user/password, but they are in a FTP rule that only allows
> IP-Range access to it.
>
> You could also consider a web interface to the site - one that still
> does authentication, but also provides SSL based access.
>
>
I appreciate your suggestion. It would simplify delivery, since I would only
have to deliver to a share and my customers could pull the deliverables as
needed. They could also upload specifications, which would eliminate me from
having to distribute these to my engineers. Thanks.

This message is not archived

"Leythos" <void RemoveThis @nowhere.lan> wrote in message
news:MPG.1c4f83f0301e3365989eea@news-server.columbus.rr.com...
> > >
> > Thanks, Greg. And they probably will be a bit paranoid about this. Our
> > systems and procedures have to satisfy DoD requirements.
>
> Then you can do like he said and set the firewall such that not only do
> they need a user/password, but they are in a FTP rule that only allows
> IP-Range access to it.
>
> You could also consider a web interface to the site - one that still
> does authentication, but also provides SSL based access.
>
>
I appreciate your suggestion. It would simplify delivery, since I would only
have to deliver to a share and my customers could pull the deliverables as
needed. They could also upload specifications, which would eliminate me from
having to distribute these to my engineers. Thanks.

In article <y9CdnVPoBZr5-HjcRVn-iA.TakeThisOut@comcast.com>, optikl.TakeThisOut-AT-newsgroups.net
says...
>
> "Leythos" <void.TakeThisOut@nowhere.lan> wrote in message
> news:MPG.1c4f07601b3a0434989ecf@news-server.columbus.rr.com...
> >
> > The health-care groups I work with don't permit removable media at any
> > general desktop computer in their offices. The servers have RW drives,
> > and so do some of the managers, but the hundreds of workstations don't,
> > and the policy forbids USB/Card devices (including PDA's) except for
> > those with written permission to use them.
> >
>
> I figured there must some exceptions. I would find it extremely difficult to
> imagine my being able to transfer technical design data I have sold to
> customers outside my company without having CDRW privileges as an option.
> Email encryption is cumbersome for very large files and usually violates our
> IT policy for the attachment size.
>
CDs to customers need company logos, legal stuff, etc, and must be
definitively SAFE, so you personally shouldn't be writing them - you
should be giving your files to a dedicated CD production unit who do all
the necessary stuff, including exhaustive antivirus checking.
--
Our town is just like any other: good citizens at work and play;
Normal folks doin' business in the normal way.
This morning was like any other: mommies kissing daddies goodbye;
Then the milkman screamed and pointed up at the sky...

In article <y9CdnVPoBZr5-HjcRVn-iA.TakeThisOut@comcast.com>, optikl.TakeThisOut-AT-newsgroups.net
says...
>
> "Leythos" <void.TakeThisOut@nowhere.lan> wrote in message
> news:MPG.1c4f07601b3a0434989ecf@news-server.columbus.rr.com...
> >
> > The health-care groups I work with don't permit removable media at any
> > general desktop computer in their offices. The servers have RW drives,
> > and so do some of the managers, but the hundreds of workstations don't,
> > and the policy forbids USB/Card devices (including PDA's) except for
> > those with written permission to use them.
> >
>
> I figured there must some exceptions. I would find it extremely difficult to
> imagine my being able to transfer technical design data I have sold to
> customers outside my company without having CDRW privileges as an option.
> Email encryption is cumbersome for very large files and usually violates our
> IT policy for the attachment size.
>
CDs to customers need company logos, legal stuff, etc, and must be
definitively SAFE, so you personally shouldn't be writing them - you
should be giving your files to a dedicated CD production unit who do all
the necessary stuff, including exhaustive antivirus checking.
--
Our town is just like any other: good citizens at work and play;
Normal folks doin' business in the normal way.
This morning was like any other: mommies kissing daddies goodbye;
Then the milkman screamed and pointed up at the sky...

On Wed, 12 Jan 2005 20:24:33 -0700, Bruce Chambers
<bruce_a_chambers.DeleteThis@h0tmail.com> wrote:

>Greg Hennessy wrote:
>
>>
>> As has been pointed out elsewhere, there is no corporate with anything
>> resembling a sane IT procurement and IT security policy would countenance
>> CDRW on the desktop.
>>
>>
>
> Please provide an IT industry White Paper or some other professional
>literature to support this seemingly absurd assertion.


If you are going to quote one out of context, I suggest reading what I
wrote elsewhere in the thread.


greg

--
Yeah - straight from the top of my dome
As I rock, rock, rock, rock, rock the microphone

On Wed, 12 Jan 2005 17:25:40 -0600, "optikl" <optikl.TakeThisOut@newsgroups.net> wrote:


>> >That's very interesting. I need to talk with my IT folks about this.
>Thanks.
>>
>> If they are paranoid about that, set up ftp access such only their cidr
>> block gets access to the server.
>>
>Thanks, Greg. And they probably will be a bit paranoid about this. Our
>systems and procedures have to satisfy DoD requirements.

If that's the case, it'll be a site to site vpn to carry the extranet
traffic.



greg


--
Yeah - straight from the top of my dome
As I rock, rock, rock, rock, rock the microphone

On Wed, 12 Jan 2005 17:25:40 -0600, "optikl" <optikl DeleteThis @newsgroups.net> wrote:


>> >That's very interesting. I need to talk with my IT folks about this.
>Thanks.
>>
>> If they are paranoid about that, set up ftp access such only their cidr
>> block gets access to the server.
>>
>Thanks, Greg. And they probably will be a bit paranoid about this. Our
>systems and procedures have to satisfy DoD requirements.

If that's the case, it'll be a site to site vpn to carry the extranet
traffic.



greg


--
Yeah - straight from the top of my dome
As I rock, rock, rock, rock, rock the microphone

On Wed, 12 Jan 2005 20:24:33 -0700, Bruce Chambers
<bruce_a_chambers DeleteThis @h0tmail.com> wrote:

>Greg Hennessy wrote:
>
>>
>> As has been pointed out elsewhere, there is no corporate with anything
>> resembling a sane IT procurement and IT security policy would countenance
>> CDRW on the desktop.
>>
>>
>
> Please provide an IT industry White Paper or some other professional
>literature to support this seemingly absurd assertion.


If you are going to quote one out of context, I suggest reading what I
wrote elsewhere in the thread.


greg

--
Yeah - straight from the top of my dome
As I rock, rock, rock, rock, rock the microphone