• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 86
  • Last Modified:

Firewall -- detecting ex-owner activity ?

I am looking to upgrade my firewall, stay current
with all OS, database, etc patches, and keep lots of backups

What firewall / software / etc do you recommend so I can try to monitor below step #4 ?
1. owner installed remote software (i.e. LogMeIn, TeamViewer, etc) onto server and several machines

2. owner quits

3. We disabled CFO’s VPN & Windows account, changing the password of all other VPN users since CFO might have known, uninstalling LogMeIn, TeamViewer, etc from whatever machines we find it on

4. owner might still access via some type of backdoor into the system
1 Solution
Logmein, teamviewr initiate outgoing connections, firewall rules on outgoing traffic would be necessary .....

Changing all the passwords internal and external resources is the first thing.
If tge organization had a paid service from logmein, teamviewr, gotomypc, etc. securing those accounts by managing the users who can access it and changing those passwords.

Audit all the installed application. ..
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Become a Leader in Data Analytics

Gain the power to turn raw data into better business decisions and outcomes in your industry. Transform your career future by earning your MS in Data Analytics. WGU’s MSDA program curriculum features IT certifications from Oracle and SAS.  

Tackle projects and never again get stuck behind a technical roadblock.
Join Now