Vulnerabilities / Threats // Insider Threats
12/3/2008
05:15 PM
Connect Directly
LinkedIn
RSS
E-Mail
50%
50%

What Not To Do For Your Road Crew

IT telecommuting traps to avoid.

There are several ways IT can destroy the productivity and happiness of hotel-hopping travelers. Learn from the real-world mistakes of others and avoid some of these pitfalls for your on-the-go employees.

Misconfigured backup client: While it's vital to have some sort of backup for staff who don't frequent the office, a misconfigured backup client can wreak havoc on the performance of off-site employees. Where possible, closely identify which file types will be backed up, as well as where they should be stored, and communicate that policy to staff.

Windows updates: The problem happens when your CEO checks into his hotel, powers on his laptop, and gets Windows XP SP3 forced down his throat. The orderly distribution of updates can be done in a more friendly way via Windows Server Update Services. Alternatively, group off-site workers into an Active Directory Organizational Unit that has a relaxed set of update policies.

Lack of a plan B: You'll eventually get a call from the most important person, at the worst possible time, telling you she can't connect to the network. Whether it's a VPN client issue, network connectivity, corrupted application--whatever it may be, have a backup plan. If a VPN client bombs, can you serve out a remote desktop? If a hotel's network is problematic, can the employee tether a smartphone to the laptop for Internet access? If Office gets corrupted, can you deliver an online version through Citrix or Microsoft Terminal Services? If you can plan ahead for disaster for your road warriors, you'll thank yourself later.

Photo by Getty Images

Return to the story:
Five Ways To Arm Your Mobile Workforce

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Latest Comment: nice one
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-0845
Published: 2015-04-17
Format string vulnerability in Movable Type Pro, Open Source, and Advanced before 5.2.13 and Pro and Advanced 6.0.x before 6.0.8 allows remote attackers to execute arbitrary code via vectors related to localization of templates.

CVE-2015-0967
Published: 2015-04-17
Multiple cross-site scripting (XSS) vulnerabilities in SearchBlox before 8.2 allow remote attackers to inject arbitrary web script or HTML via (1) the search field in plugin/index.html or (2) the title field in the Create Featured Result form in admin/main.jsp.

CVE-2015-0968
Published: 2015-04-17
Unrestricted file upload vulnerability in admin/uploadImage.html in SearchBlox before 8.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension and the image/jpeg content type, a different vulnerability than CVE-2013-3590.

CVE-2015-0969
Published: 2015-04-17
SearchBlox before 8.2 allows remote attackers to obtain sensitive information via a pretty=true action to the _cluster/health URI.

CVE-2015-0970
Published: 2015-04-17
Cross-site request forgery (CSRF) vulnerability in SearchBlox before 8.2 allows remote attackers to hijack the authentication of arbitrary users.

Dark Reading Radio
Archived Dark Reading Radio
Join security and risk expert John Pironti and Dark Reading Editor-in-Chief Tim Wilson for a live online discussion of the sea-changing shift in security strategy and the many ways it is affecting IT and business.