Re: [hylafax-users] whfc, faq #3 "WHFC hangs", vpn

[Ulrich Eckhardt <Ulrich.Eckhardt@transcom.de>]

Giulio Orsero wrote:
> 
> On Fri, 19 Apr 2002 16:19:05 +0200, Ulrich Eckhardt
> <Ulrich.Eckhardt@transcom.de> wrote:
> 
> >> WinXP PC, which connects to the Internet and then vpn (pptp) to PlaceA.
> 
> >you are aware that this windows box may be used to tunnel via vpn
> >in the internal server?
> Teorically yes, but do you think risk is very high?

Depends how this PC is setup and used. For example if a 
normal user installs a trojan horse (or the trojan 
horse will be installed by one of the features[1]
of Outlook or Word) ... 
 
> Are you talking about Win pptp vpn in particular?

No.

> >If you can change the routing on all this gateways and the
> >pulic and vpn ip address is static you can try to set a
> >hostroute.
> Where to put the route?
> Are you saying to use in the client
> add route to <private ip address of server> through <vpn device>

Yes and also don't forget the reverse routes from the server
to the client.

Uli

[1] Last lines of
http://www.microsoft.com/mac/products/office/2001/office_main.asp?embfname=virus_alert.asp

  Will the virus impact my Macintosh if I am using a non-Microsoft 
  e-mail program, such as Eudora?
  [..]
  But most likely other e-mail programs like Eudora are not 
  designed to enable virus replication.

-- 
Ulrich Eckhardt                         Transcom  
http://www.uli-eckhardt.de              http://www.transcom.de
                                        Lagerstra�e 11-15 A8
                                        64807 Dieburg Germany

____________________ HylaFAX(tm) Users Mailing List _______________________
  To subscribe/unsubscribe, click http://lists.hylafax.org/cgi-bin/lsg2.cgi
 On UNIX: mail -s unsubscribe hylafax-users-request@hylafax.org < /dev/null