Re: NAC

On Mon, Dec 15, 2003 at 11:40:47AM +0100, Zerotermico wrote:
> E' una cosetta interessante....
> che ne dite?
> 
> Q. What is NAC?
> 
> A. Cisco Network Admission Control (NAC) is an industry-wide collaboration
> led by Cisco, to focus on limiting damage from emerging security threats
> such as viruses and worms. Customers using NAC can allow network access only
> to compliant and trusted endpoint devices (e.g. PCs, servers, PDAs) and can
> restrict the access of non-compliant devices. In its initial phase, NAC
> enables Cisco routers to enforce access privileges when an endpoint device
> attempts to connect to a network. This decision can be based on information
> about the endpoint device such as its current anti-virus state and operating
> system patch level. NAC allows non-compliant devices to be denied access,
> placed in a quarantined area, or given restricted access to computing
> resources. NAC will initially support endpoints running Microsoft? Windows
> NT, XP and 2000 operating systems.
> 
> http://www.cisco.com/en/US/netsol/ns340/ns394/ns171/ns75/netqa09186a00801d822e.html
> 
> http://www.cisco.com/warp/public/779/largeent/nac/index.html
> 

Se ho capito bene..
1. Che la compatibilita' come al solito e' un'opinione.
2. Che devo avere un demone o qualcosa che faccio inspection di tutto cio' che
   c'e' sul mio pc e trasmette dati ad oggetti "a me" sconosciuti.
3. Che devo avere un antivirus come lo vogliono loro, se ne ho uno che
   funziona meglio ma non e' sub-licenziato da cisco mi attacco.
4. Che se devo andare da due clienti diversi con due policy di sicurezza
   diverse e' meglio se prego, prima di attaccare il laptop alla rete ? 

Sono molto scettico, insomma..
Bye,
   Alessio


 



________________________________________________________
http://www.sikurezza.org - Italian Security Mailing List