| To: | "pen-test list" <pen-test@securityfocus.com> |
|---|---|
| Subject: | Skype use obligation - Security x Productivity |
| From: | M.B.Jr. <marcio.barbado@gmail.com> |
| Date: | Mon, 16 Jul 2007 18:56:12 -0300 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | pentest-list2@consult.net |
| Delivered-to: | mailing list pen-test@securityfocus.com |
| Delivered-to: | moderator for pen-test@securityfocus.com |
| Dkim-signature: | a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=SXNiPBAdtjaUFkViEO5zT8oNjTUMOgpTfp+jYlpz/f49tIxTjIEBXuTuCP6bvXpliwI4MxgTN6xyYqGB+id/LmW/fU75bhlyKq+uAuqyMKop6VGxZouhKFwyFHFU3/rDFKf6veF28seh7oOeWnhS9tjYKzDMzuEsTJslSUqOVFM= |
| Domainkey-signature: | a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=jM45fTSGMoz1pFsbORnZKP4hWHXwzuhy5YHVzQyHlTKvyLPhj15f7HXRGC7Pp3j4OcJVFtanieAxFCjMCSpWPgmFGWWCupHgplJMvMGrGKrC+UPXLxx46aR+W4K89SxO1jm9arUtFo/emfxJFYJIW1Xkaq9rHtCtvd70ieden5Y= |
| List-help: | <mailto:pen-test-help@securityfocus.com> |
| List-id: | <pen-test.list-id.securityfocus.com> |
| List-post: | <mailto:pen-test@securityfocus.com> |
| List-subscribe: | <mailto:pen-test-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:pen-test-unsubscribe@securityfocus.com> |
| Mailing-list: | contact pen-test-help@securityfocus.com; run by ezmlm |
| Resent-date: | Mon, 16 Jul 2007 18:13:31 -0600 (MDT) |
| Resent-from: | pen-test-return-1078484604@securityfocus.com |
| Resent-message-id: | <20070717001331.8060C143B51@outgoing2.securityfocus.com> |
| Resent-sender: | listbounce@securityfocus.com |
| Sender: | listbounce@securityfocus.com |
Gentlemen, Iam part of a Brazilian Information Security consultancy focused on the SMB market segment and we're facing sth new. We're used to see some companies offering partnership transactions through web apps but this time we're dealing with the obligation of sheltering a new service. Some backgound: one of our customers has its network pretty restricted, following ISO 27001 and ISO 17799 that is to say, all of the services within their network were carefully chosen and deployed. Their network itself was meticulously designed. Now, one big partner they have is forcing them to install Skype in order to keep'em up to receive new business opportunities. Well, Skype is against their policies. I was asked about how hazardous this could be to their network and I said: "no, Skype is not ok because it lacks transparency concerning your firewalls, bridges, proxies and etc." Not to mention its port agile features. But, did not give one final word yet... The network's stability is my team's responsibility. What to do? Risk their efforts in obtaining ISO certification? Guess we need to hear some other professionals. Thank you, any comment will be extremmely useful. -- Marcio Barbado, Jr. ============== ============== ------------------------------------------------------------------------ This List Sponsored by: Cenzic Swap Out your SPI or Watchfire app sec solution for Cenzic's robust, accurate risk assessment and management solution FREE - limited Time Offer http://www.cenzic.com/c/wf-spi ------------------------------------------------------------------------ |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Official release of SQL Power Injector 1.2, Francois Larouche |
|---|---|
| Next by Date: | Re: Mile2 Training (Certifications), Pete Herzog |
| Previous by Thread: | Official release of SQL Power Injector 1.2, Francois Larouche |
| Next by Thread: | Re: Skype use obligation - Security x Productivity, Roland Dobbins |
| Indexes: | [Date] [Thread] [Top] [All Lists] |