Solved

Citrix remote risk assessment

Posted on 2006-10-20
6
903 Views
Last Modified: 2006-11-23
I have been asked to perform a risk assessment for a client who has users connecting to their site through Citrix

I need to provide them with a report that list the security vulnerbilities and risk from doing so.
I have never done a security risk aassessment and not sure where to begin.

What tools do I need and what to look for?
0
Comment
Question by:Tcarollo
  • 2
6 Comments
 
LVL 25

Accepted Solution

by:
Ron M earned 125 total points
Comment Utility
Microsoft Security Baseline Analyzer 2.0 for starters....that will show you typical vulnerabilities for the OS.
Hit Windows update site, to list available updates for the OS as well.

More importantly you need to look at the domain "password policy", complexity, and lockout duration.
Is "passthrough" authentication allowed  on the citrix box ?
Who maintains, and documents who has permission to logon to citrix in Active Directory ?
Are client drives, com ports, audio, or client printer mapped at logon ?
Is there Group Policy applied to the Citrix box ?
Who is an Administrator on the local users and groups for the citrix server ?
Is there a published desktop, or published Apps ?
Is there accounting software on the citrix server, and if so, is the program folder locked to Accounting Group only ?
Is outlook express being used on the server ? If not, there should be permissions on the program folder for only local admins.
Are users allowed to use internet explorer on the server ? If not, lock it down.
If it is a windows 2003 box, is "advanced security configuration" turned on for internet browsing ?
Group policy for trusted, restricted, internet sites ?
Group plicy for Site Zone security settings ?
Can users install print drivers ?
Can users logon with RDP as well ?

Some of the above may help you get started.
good luck.
0
 

Author Comment

by:Tcarollo
Comment Utility
That is a great start, thanks for all of that info.
My part of the audit doesn't start for a couple weeks.
I will keep in touch and ask more questions if you don't mind.

0
 
LVL 25

Expert Comment

by:Ron M
Comment Utility
ask away.
0
 
LVL 4

Assisted Solution

by:LBACIS
LBACIS earned 125 total points
Comment Utility
These will do the trick and with the exception of GFI they are free.
                             
                                                Nessus, NEWT, GFILanGuard
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Never store passwords in plain text or just their hash: it seems a no-brainier, but there are still plenty of people doing that. I present the why and how on this subject, offering my own real life solution that you can implement right away, bringin…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now