Brad Renfro wrote:
>
> What is the residual risk of applying fairly strict domain wide security
> policies on a LAN but leaving local security policy pretty much the default?
>
As far as I understand it, this would allow someone to remove the box
from the domain and operate under the looser local policy. A larger
question is of what benefit it is to you?
-Ds
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
>
> What is the residual risk of applying fairly strict domain wide security
> policies on a LAN but leaving local security policy pretty much the default?
>
As far as I understand it, this would allow someone to remove the box
from the domain and operate under the looser local policy. A larger
question is of what benefit it is to you?
-Ds
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
[ reply ]