[ale] OT: Win10 and VPN
DJ-Pfulio
DJPfulio at jdpfu.com
Tue Dec 8 11:23:51 EST 2020
Microsoft marketing is working, as usual. Whether anything is actually secure isn't the question, just whether some marketing team can convince people that it is secure.
Win10 RDP is better than prior RDP authentication methods, but does that mean any company should trust it? NO! Some parts of security really need 2, unrelated, methods providing security. A VPN plus Remote desktop is one example. I'd rather that crackers need to hack 2 unrelated systems, than just 1 to gain access to corporate LANs.
Be many people will allow convenient choices over what could be called extra security. How many thousands of times has MSFT provided some code implied to be secure, yet it wasn't, especially security code? Anyone remember PPTP?
On 12/8/20 11:09 AM, JEFFREY LIGHTNER via Ale wrote:
> That's as funny as the Apple fanboys that say iPhones can't be
> hacked.
>
> The point in the VPN is to encrypt the connection end to end. It
> has nothing to do with whether Windows10 or any other desktop system
> is itself secure. It is about preventing other people on networks in
> between from seeing what is happening.
>
> If it were me I'd raise this up through management as this obvious
> blind spot about the purpose of VPN should be very concerning.
>
>> On 12/08/2020 10:31 AM Boris Borisov via Ale <ale at ale.org> wrote:
>>
>>
>> My company used to manage VPN server so I can some times use open
>> wifi with more confidence.
>>
>> Seems like they put the VPN down. I called IT and the answer was
>> since we all going to move to Win10 VPN is not needed anymore.
>>
>> Did I missed some very cool Win10 feature and my IT guy is wrong.
>>
>> Thanks for reading it :)
More information about the Ale
mailing list