Koozali.org: home of the SME Server
Obsolete Releases => SME Server 7.x => Topic started by: Brave Dave on April 17, 2009, 12:53:53 AM
-
Log me in is the remote access software
Has there been any discussion on how to block this type of "unmetered"/"uncontrolled" access ?
-
Log me in is the remote access software
Has there been any discussion on how to block this type of "unmetered"/"uncontrolled" access ?
I have no idea what you are talking about. Please clarify.
-
Sure
Log Me In is a Remote Desktop Protocol or VNC type thing (logmein.com)
It works (as far as I can make out) by accessing a remote server and making itself (a workstation) available - via a NAT type link - so bypassing the natural firewall.
The user who wants to access the PC goes through the Log Me In Server and accesses their PC - so instantly they are inside the network - via NAT protocols.
But no one else has any idea they are there. It is fully controlled by an individual - not a policy, company or administrator.
Of course one way to stop the access is to prevent them installing the software - not a local admin - but this is a workstation (windows) based solution.
I'm thinking I need to workout where the relevant Log Me In servers are and block them - just wondered if anyone else had pondered this issue.
-
I'm thinking I need to workout where the relevant Log Me In servers are and block them - just wondered if anyone else had pondered this issue.
Not me. You could do this by setting up fake DNS data for the LogMeIn servers - which would work until users work out how to set up their hosts file.
-
Just block secure.logmein.com
Even though it is a useful application , there are security risks with it..
-
Thanks for the pointers
I have added a domain logmein.com to my domains, so secure.logmein.com should not resolve
That will be nice if it's that simple a solution
There is another of these at gotomypc.com
- GotoMyPc as publish a howto block - nice:
https://www.gotomypc.com/help2.tmpl#securityit