Firewall configuration

ravi12
ravi12 W/ Alumni Posts: 57 Security Scout
in WithSecure Business Suite

Hi sir, after upgrade to 14.00 windows firewall is turned on. Now user can create new firewall rule beside f-secure firewall rule. How to configure that local admin could not configure any windows firewall rule through policy manager server.

Comments

  • MJ-perComp
    MJ-perComp W/ Alumni Posts: 669 Firewall Master


    A) Withdraw local admin rights, which is MOST important to secure your systems. Otherwise all other atempts are void from the beginning.
    B) enable "Ignore all Firewall rules not listed in this profile".

     

  • etomcat
    etomcat W/ Alumni Posts: 1,172 Firewall Master

    Hello,

     

    > Withdraw local admin rights, which is MOST important to secure your systems

     

    I think that is a hard-liner approach. Many companies use legacy applications, old in-house developed apps which may require local admin rights. People travelling far with company notebooks may also require a degree of autonomy, so local admin right isn't such an outrageous demand.

     

    BR, Tamas Feher, Hungary.

  • MJ-perComp
    MJ-perComp W/ Alumni Posts: 669 Firewall Master

    True,
    but if you are local admin you are in control of the system and thus you (and and a malware running under your account) can do anything you want.

    If there are legacy applications that can not be replaced by secure ones (mostly it is a question of money only) operate them in a secured environment, but nowhere with access to the world.

     

    M.

This discussion has been closed.

Categories