Grouply  Create your own group
Sign up | Login
Report picture abuse Recent Msgs
CMNIT: Wirless Awareness PPT
Not a Discussion?? Then please  edit
Clint L.
12/2/11 1:23pm
Hey Everyone,

Attached is a copy of the PPT presentation from the Wireless Awareness event. Also, a few notes we mentioned:

- Due to the increase of tech events around the area, CMNIT will now meet minimally twice a year. Don't worry, we're still involved in and promoting other IT events in the area.

- Please contact myself or Roger if you're interested in presenting at an upcoming CMNIT event. Long (~1 hour) or short (15 min) presentations; We're interested in new ideas, and especially any interesting solutions to challenges you've overcome.

- Saint Cloud VMUG is coming up next week. More info here: http://www.myvmug.org/e/in/eid=259

- Saint Cloud area "DEFCON" group is forming. Fill out this short survey and you'll be contacted later with more info: http://www.surveymonkey.com/s/8BWSB9S

- Roger is looking into the possibility of starting a Cisco UCS lunch-and-learn group. Please contact him if interested.

I think that sums things up, thanks again!

- CL
POPULAR TAGS:
MY TAGS:
MY BOOKMARK NOTE:
  edit
My Rating:
Avg. Rating:
[0 votes]
Comments (2)
Post a comment
There are 0 comments that you previously viewed.
1. Name N/A wrote at 8:34am on December 5, 2011
Loading...
2. Clint L. wrote at 9:39pm on December 5, 2011
Loading...
You must be a member of this group to post comments.Join
About This Site
roger l. and Clint L. are managing this site on Grouply
Welcome to CentralMNIT!
  or login  
   
Email Address or Grouply ID:
Password:
Forgot password or ID?
Don't have a Grouply ID? Sign up
  We use Grouply ID for authenti­cation. What is a Grouply ID?
 
 or 
  
   
Connect with Facebook
Viewed By
18 members
 see more
cache
I am planning a company wide discussion on this topic for our employees. I will go over some of the main points (without getting too technical as it will be targeted to end users) given in this topic and steps to spot and protect yourself. I know I will have many questions regarding this as I build my presentation.

My first question is regarding protecting our end users while on a 3rd party WiFi connection. From the meeting it sounds like the best approach is to not use the auto connect feature and manually connect to all wireless networks. From an end users view this is not a very workable situation and many may not follow my advice on this. However lets go a step further and say one of our people is at a location and their computer does connect (manually or automatically) to a device masquerading as another wireless network (man in the middle.) What steps, aside from disconnect, can they do to prevent the data from being intercepted? Would opening a VPN connection and tunneling all traffic though it be effective?
In addition to providing users education about the dangers of public Wi-Fi, and the "correct" usage/behavior of auto-connect (good luck...) my recommendation would be to utilize an encrypted tunnel to establish a connection through a known, safe gateway and route all outbound traffic through it. Traditional VPN clients, SSLVPNs, or products utilizing SSL encapsulation, such as a Citrix Access Gateway, Remote Desktop Web Access, or Remote Desktop Gateway provides this level of security.

This way, even if your user unknowingly connects to a malicious AP, the traffic is encrypted and the attacker would most likely move on to an easier target. Why break into a random home with a full blown security system, when the next house down is dark and unlocked?

However, I am slightly hesitant to completely recommend SSLVPNs requiring users to first authenticate via a website when utilizing public Wi-Fi, as they could be vulnerable to something like SSLSTRIP.

Again, it's all cat and mouse. Evaluating risk, and how far down the rabbit hole your users are willing to go.
/cache