Solved

Portable firefox or portable apps

Posted on 2006-06-16
4
680 Views
Last Modified: 2009-12-16
Please give me your input and opinion on the risk involved with allowing portable apps or portable firefox on a corporate network. I found someone that is using the portable firefox program on a usb device. We have a policy in the handbook that addresses the use of portable devices, to include the proper usage of usb drives.
0
Comment
Question by:jhhaley
  • 2
4 Comments
 
LVL 7

Assisted Solution

by:Okigire
Okigire earned 125 total points
ID: 16922601
Portable firefox itself probably isn't too bad, but there are possibilities that there are security holes.  In general, anything can pose serious security risks.  Depending on the sensitivity of the information, people can "bring it home" completely unencrypted and available to prying eyes.  Other applications- say Internet Explorer, for example -has many security holes.  If a program they're using is, or contains a virus then the network is in trouble.

A recent experiment - a security consulting firm filled USB drives with random pictures and files... of course they hid a trojan in there.  They left these in common areas, and people picked them up and plugged them into their machine and all ran the program.  INFECTED!  Now, granted this is an extreme case - it is completely realistic for somebody to "accidentily" bring in a virus or transfer data or run programs that could conflict or "break" something on the network.
0
 
LVL 27

Accepted Solution

by:
Tolomir earned 125 total points
ID: 16924146
Well the portable version of firefox, grants a certain level of privacy. Like any other portable application.

As long as you grant internet access to employees, seeing an USB drive as particular security leak is a bit overreacting.

I'm using gmail to store sql scripts such like as some kind of notebook (safe them as drafts) I even store always needed programs right there.
So if I'd like to steal information I would use gmail, not an usb stick ;-)

I think, it might be a good idea to offer security tested applications for the employees so they can be sure their portable applications like firefox is clean.  

Of cause if you just want to knock down all such stuff, one answer: http://www.gfi.com/endpointsecurity/

Tolomir
0
 
LVL 7

Expert Comment

by:Okigire
ID: 17070482
I think both your (Tolomir) and my (Okigire) opinions are very valid, and show two perspectives.  Depending on the environment, security could be an issue including Firefox, but may well not be.  Since the author gave no feedback, I think both are worthy answers and a point split would be appropriate.
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Healthcare organizations in the United States must adhere to the guidance of both the HIPAA (Health Insurance Portability and Accountability Act) and HITECH (Health Information Technology for Economic and Clinical Health Act) for securing and protec…
It’s a strangely common occurrence that when you send someone their login details for a system, they can’t get in. This article will help you understand why it happens, and what you can do about it.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now