On 16/01/16 06:17, Grant wrote:
I'm considering allowing some employees to work from home but I'm
concerned about the security implications. Currently everybody shows up
and logs into their locked down Gentoo system and from there is able to
access the company webapps which are restricted to the office IP
address. I guess I would have to allow webapp access from any IP for
those users and trust that their computer is secure? Should that not be
scary?
I've set up such systems using OpenVPN, as others have suggested.
One thing to look out for, is to make sure that the setup only tunnels
traffic to your servers, not ALL traffic. Otherwise, all traffic from
your people is going to be tunneled through your network (Netflix,
torrents, porn, everything else your people are doing at home.)
