Solved

Citrix remote risk assessment

Posted on 2006-10-20
6
920 Views
Last Modified: 2006-11-23
I have been asked to perform a risk assessment for a client who has users connecting to their site through Citrix

I need to provide them with a report that list the security vulnerbilities and risk from doing so.
I have never done a security risk aassessment and not sure where to begin.

What tools do I need and what to look for?
0
Comment
Question by:Tcarollo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
6 Comments
 
LVL 25

Accepted Solution

by:
Ron Malmstead earned 125 total points
ID: 17777124
Microsoft Security Baseline Analyzer 2.0 for starters....that will show you typical vulnerabilities for the OS.
Hit Windows update site, to list available updates for the OS as well.

More importantly you need to look at the domain "password policy", complexity, and lockout duration.
Is "passthrough" authentication allowed  on the citrix box ?
Who maintains, and documents who has permission to logon to citrix in Active Directory ?
Are client drives, com ports, audio, or client printer mapped at logon ?
Is there Group Policy applied to the Citrix box ?
Who is an Administrator on the local users and groups for the citrix server ?
Is there a published desktop, or published Apps ?
Is there accounting software on the citrix server, and if so, is the program folder locked to Accounting Group only ?
Is outlook express being used on the server ? If not, there should be permissions on the program folder for only local admins.
Are users allowed to use internet explorer on the server ? If not, lock it down.
If it is a windows 2003 box, is "advanced security configuration" turned on for internet browsing ?
Group policy for trusted, restricted, internet sites ?
Group plicy for Site Zone security settings ?
Can users install print drivers ?
Can users logon with RDP as well ?

Some of the above may help you get started.
good luck.
0
 

Author Comment

by:Tcarollo
ID: 17788232
That is a great start, thanks for all of that info.
My part of the audit doesn't start for a couple weeks.
I will keep in touch and ask more questions if you don't mind.

0
 
LVL 25

Expert Comment

by:Ron Malmstead
ID: 17791168
ask away.
0
 
LVL 4

Assisted Solution

by:LBACIS
LBACIS earned 125 total points
ID: 17807849
These will do the trick and with the exception of GFI they are free.
                             
                                                Nessus, NEWT, GFILanGuard
0

Featured Post

Prevent Ransomware with Total Security Suite

With recent ransomware attacks topping the headlines, it might seem like there'e no hope in the battle against these advanced threats. Learn more about how WatchGuard's Total Security Suite can effectively prevent ransomware attacks including Petya 2.0 and WannaCry!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Liquid Web and Plesk discuss how to simplify server management with a single tool  in their webinar.
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Suggested Courses

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question