Looking for answers on Two Way Trust Vulnerabilities
Posted on 2009-07-02
I'm trying to put together a point paper explaining the benefits and the vulnerabilities of establishing a two way trust between two domains. I've got plenty of information on the benefits but honestly I can't find anything "negative" towards establishing one. Can anyone explain some of the inherent vulnerabilities of establishing a trust? Users from domain A cannot access resources from domain B unless the permissions allow the specific user, authenticated users or everyone to access that resource. Administrators from domain A should not be able to do any administration in domain B.
The next question, what are some of the things I should do security wise to "protect" my network more once I establish a two way trust?