OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: Visual Source Safe?
From: Paul Taylor (PAUL_TAYLORQVC.COM)
Date: Tue Sep 12 2000 - 07:03:37 CDT

Not knowing your LAN layout, I am assuming that your VSS server is in a
domain, and that you have a RAS box of some type. What you need to do is
set up a VPN in your DMZ, and have that route to your internal network,
where the VSS server lives. The VPN box shouldn't be running anything else
except for VPN. Don't set up the VPN on your VSS box.

Paul Taylor
QVC, Inc., Data Security
(610) 701-8761

To: FOCUS-MSSECURITYFOCUS.COM
cc: (bcc: PAUL TAYLOR/QVC)

From: Steven Boothe <stevenbVISUALPURPLE.COM>SECURITYFOCUS.COM> Ext:
      NA
Date: 09/11/2000 04:30 PM

Please respond to Focus on Microsoft Mailing List
      <FOCUS-MSSECURITYFOCUS.COM>

Sent by: Focus on Microsoft Mailing List <FOCUS-MSSECURITYFOCUS.COM>

Subject: Visual Source Safe?

Greetings fellow listers:

I have been given the task of setting up remote access to our Visual
Source Safe repository. Can anyone please comment on the viability
of doing this while still maintaining some semblance of sanity where
security is concerned?

My first thought was to set up the default MS VPN, but so far that has
been far from painless (it appears to work across the LAN, but not
over a dial-up - ports have been checked "open" on the firewall - shoot
at one point I even opened all of 'em to the IP address and still
nothing...).

Does VSS support encrypted remote access? (I have not gotten the
impression that it did from what I have read so far.)

What does anyone here do if they want to support secure remote
development?

Any and all comments sure would be appreciated.

Thanks and regards,

Steven