A dedicated, self-contained hardware appliance: Symantec remote desktop access security assessment Free Trial | Support Virtualization Blog | Webcasts
Remote Desktop Control by BOMGAR Remote Desktop Access Remote Support Solutions Customers Help Desk Support News About Bomgar Contact Bomgar

Symantec Security Assessment: SupportDesk™ 9 Product Penetration

PDF Version (84KB)   Email This Item


NetworkStreaming Security Architecture

During the assessment, Symantec identified aspects of NetworkStreaming's security architecture that offer protection against a variety of threats that exist within this type of application architecture.

1. A Dedicated Hardware Appliance

By default, the SupportDesk™ appliance ships as a self-contained application server with all services required to run the application. In order to ensure that the installed versions of server components remain up-to-date with respect to possible security issues, the SupportDesk™ appliance architecture supports functionality to allow an administrator to conduct a full update of critical service components deployed.

Symantec also conducted port scans of the SupportDesk™ appliance and found that only a small number of network ports were enabled and responsive on the Appliance in the default configuration. An evaluation of the server configuration revealed that the SupportDesk™ appliance ships with a default set of firewall rules, limiting network connectivity to HTTP (TCP 80) and HTTPS (TCP 443) ports and an alternative HTTPS port (TCP 8200). During testing, the firewall rules in place successfully prevented access to the network interfaces of other server components.

Additionally, access to the administration interface for the SupportDesk™ appliance occurs over an encrypted web connection and can be restricted to the local console port and/or a specified network segment. This protects against a remote attacker with network access to the Appliance gaining unauthorized access to administration functions.

The design of the SupportDesk™ appliance as a dedicated hardware environment for running application server components facilitates secure deployment into a production environment. Because the Appliance ships with a restricted set of up-to-date services that are pre-configured to run the application server components, such as the SupportDesk™ server, customers do not need to independently conduct security hardening of the server before deployment into production.

<< Previous | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | Next >>

 

The Adobe® logo is a registered trademark of Adobe Systems Incorporated in the United States and/or other countries.
© 2003-2008 Bomgar Corporation | All Rights Reserved Remote Desktop Access & Control | Remote Support | Remote Access Software for Unattended Systems
Remote Desktop Control by BOMGAR | PrivacyRemote PC Access | Mac Remote Access | Linux Remote Access | Remote Control for Windows Mobile