Solved

Portable firefox or portable apps

Posted on 2006-06-16
4
687 Views
Last Modified: 2009-12-16
Please give me your input and opinion on the risk involved with allowing portable apps or portable firefox on a corporate network. I found someone that is using the portable firefox program on a usb device. We have a policy in the handbook that addresses the use of portable devices, to include the proper usage of usb drives.
0
Comment
Question by:jhhaley
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 7

Assisted Solution

by:Okigire
Okigire earned 125 total points
ID: 16922601
Portable firefox itself probably isn't too bad, but there are possibilities that there are security holes.  In general, anything can pose serious security risks.  Depending on the sensitivity of the information, people can "bring it home" completely unencrypted and available to prying eyes.  Other applications- say Internet Explorer, for example -has many security holes.  If a program they're using is, or contains a virus then the network is in trouble.

A recent experiment - a security consulting firm filled USB drives with random pictures and files... of course they hid a trojan in there.  They left these in common areas, and people picked them up and plugged them into their machine and all ran the program.  INFECTED!  Now, granted this is an extreme case - it is completely realistic for somebody to "accidentily" bring in a virus or transfer data or run programs that could conflict or "break" something on the network.
0
 
LVL 27

Accepted Solution

by:
Tolomir earned 125 total points
ID: 16924146
Well the portable version of firefox, grants a certain level of privacy. Like any other portable application.

As long as you grant internet access to employees, seeing an USB drive as particular security leak is a bit overreacting.

I'm using gmail to store sql scripts such like as some kind of notebook (safe them as drafts) I even store always needed programs right there.
So if I'd like to steal information I would use gmail, not an usb stick ;-)

I think, it might be a good idea to offer security tested applications for the employees so they can be sure their portable applications like firefox is clean.  

Of cause if you just want to knock down all such stuff, one answer: http://www.gfi.com/endpointsecurity/

Tolomir
0
 
LVL 7

Expert Comment

by:Okigire
ID: 17070482
I think both your (Tolomir) and my (Okigire) opinions are very valid, and show two perspectives.  Depending on the environment, security could be an issue including Firefox, but may well not be.  Since the author gave no feedback, I think both are worthy answers and a point split would be appropriate.
0

Featured Post

Windows running painfully slow? Try these tips..

Stay away from Speed Up Computer Programs that do more harm than good.
Try these tips instead.
Step by step instructions in trouble shooting Windows Performance issues.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question