Posted: Fri Oct 01, 2010 8:34 pm Post subject: tell me the risks of a non company pc/laptop on company lan
To settle a discussion at work today, can anyone tell me the risks if any of putting a non company pc/laptop on LAN
Imagine I work for abc ltd
A visitor (does not work for abc ltd) meets someone in abc ltd offices ,connects a network cable into his laptop, boots up laptop, he will get an ip address from DHCP server, once he has an ip address , what can he do
Could he get to our system, other pc's on LAN, servers , routers etc
Imagine he has/trojan on laptop, can this infect our interfere with our systems
Using a simple ipconfig command he can get his ip address , and can easily guess other ip addresses
Got buy Hacking Exposed and read it front to back to put it simply yes both the company and the user .. think of it as letting the user into the company and allowing them to wonder around and take things or the comapny takes your stuff and wonders your computer /traffic looking for stuff
Yes, there is an inherant risk of letting someone connect to the company network on a machine that has not been "vetted". But quite a few companies do allow this.
You could mitigate the possibility of rogue software infecting your network by creating a separate VLAN for this use and using access lists on the routers to prevent traffic from this vlan from leaving any other router (or switch) port and basically just allow it to access the internet.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum