IT Baseline Protection Manual - The Information Warfare Site

Threats Catalogue Deliberate Acts Remarks
____________________________________________________________________ .........................................
- A general danger found when administration is inadequate is that hardware
or software components used for communication, upon which the RAS
connections rely, are configured either incorrectly or so that they are
incompatible. Incorrect configuration can range here from incorrect
security settings through to incompatible communication protocols. The
consequences of incorrect configuration are just as diverse, for example,
users are unable to log on when they need to or unauthorised third parties
can successfully establish a connection.
Examples
- An employee working out in the field regularly uses the replication
mechanism of a groupware product to update his local copy of a technical
reference database. Because the replication mechanism is incorrectly
configured, replication is always initiated after the RAS connection has
been established so that connection using a mobile phone modem always
appears to "hang" after successful logon.
- A company uses a software management system which regularly installs
new software updates on the individual users’ computers. Due to a
configuration error, the mobile RAS clients are included in this procedure.
After a connection has been successfully established, the entire bandwidth
is then taken up by the management software attempting to install a
substantial update package on the computer.
____________________________________________________________________ .........................................
IT-Baseline Protection Manual: Oktober 2000
Incorrectly configured
components for
communication