BlackBerry Forums Support Community               

Closed Thread
 
LinkBack Thread Tools
Old 08-22-2006, 03:19 PM   #1 (permalink)
Knows Where the Search Button Is
 
Join Date: Jan 2006
Location: RI, USA
Model: 7250
Posts: 34
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default Scared that I can access my LAN from the BB

Please Login to Remove!

I found out today that I can access websites on my company's network. Is there some way to prevent that with ease. is there a BES firewall or some way to prevent this.

thank you
Tekjock
Offline  
Old 08-22-2006, 03:23 PM   #2 (permalink)
BlackBerry Extraordinaire
 
Milkman's Avatar
 
Join Date: Aug 2005
Location: Tampa Bay, Florida
Model: 9630
Carrier: Sprint
Posts: 1,087
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Your question is a bit confusing.

If you used Enterprise Activation (to get your work e-mail), aka BES, your BB may also have access to INTRAnet sites for your company, and is normal.

If you are not using any BES (can't get work e-mail from your BB), then that means you can probably access your company information from any computer with Internet access, and just isn't limited to Blackberry.

If you are saying you know all of this, and simply want to secure the information, the best thing you can do is do a password screen lock with a xx minute timeout where it will automatically lock. Although if you are hooked into a BES, I am surprised they didn't make that a policy.
__________________
Gator fan for LIFE!!!
UNBEATEN on Bobby Bowden Field
Offline  
Old 08-22-2006, 03:30 PM   #3 (permalink)
BBF Veteran User
 
Join Date: Aug 2004
Location: Hotwiring another Cessna
Model: OU812
Carrier: Nintendo
Posts: 3,492
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Your BES administrator can disable intranet access easily enough if needed.
Offline  
Old 08-23-2006, 08:04 AM   #4 (permalink)
Knows Where the Search Button Is
 
Join Date: Jan 2006
Location: RI, USA
Model: 7250
Posts: 34
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by Milkman
Your question is a bit confusing.

If you used Enterprise Activation (to get your work e-mail), aka BES, your BB may also have access to INTRAnet sites for your company, and is normal.

If you are not using any BES (can't get work e-mail from your BB), then that means you can probably access your company information from any computer with Internet access, and just isn't limited to Blackberry.

If you are saying you know all of this, and simply want to secure the information, the best thing you can do is do a password screen lock with a xx minute timeout where it will automatically lock. Although if you are hooked into a BES, I am surprised they didn't make that a policy.
Sorry I was not clear. We do have email access with a BES. I was not the one who set it up and Im still a bit new with the BES. Is it one of hte policies on the BES or AD.

Quote:
Originally Posted by bfrye
Your BES administrator can disable intranet access easily enough if needed.
Is this the same question I have above, is this thru the BES.

ALSO, I guess my main concern here is, and is this possiable. Say a user installs a app on the BB, and there is a virus of some sort i could care less if it attacks the BB, but is it possiable for that virus to attact my Co's intranet.

Thanks guys and please forgive my BES Noobness.
Tekjock
Offline  
Old 08-23-2006, 08:22 AM   #5 (permalink)
Knows Where the Search Button Is
 
Join Date: Jan 2006
Model: 7520
Posts: 18
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

in short see this:
Presentation - Blackjacking

background (the download link is live so the tools are available for testing)

Abstract:
Research in Motion's Blackberry technology has quickly become the defacto standard for executives and technical personnel alike to maintain unteathered remote access to critical data. Often regarded as inherently secure, most administrators deploy this solution without a full understanding of the technology or risks involved.

This presentation will demonstrate how an attacker could utilize many typical corporate blackberry deployments to directly attack machines on the internal networkxxx8212;behind your perimiter defenses! The tools and source code presented will be available for attendees. Techniques for reducing the risks associated with this technology will also be presented.

Materials:

Presentation Slides Blackberry Attack Toolkit (Including BBProxy)
Offline  
Old 08-23-2006, 09:04 AM   #6 (permalink)
BBF Veteran User
 
Join Date: Aug 2004
Location: Hotwiring another Cessna
Model: OU812
Carrier: Nintendo
Posts: 3,492
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

in short, if they don't know the app then yes... someone could design an app to specifically attack your network that works from a blackberry. How feasable that is, well... not very. It's a painful process that might or might not produce very little results for the attacker and is probably highly unlikely to happen.

Your BES admin can also disable users installing their own 3rd party apps as well preventing this from happening.
Offline  
Old 08-30-2006, 02:48 PM   #7 (permalink)
Knows Where the Search Button Is
 
Join Date: Jan 2006
Location: RI, USA
Model: 7250
Posts: 34
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Well thank you all for all the help and I am the BES admin for my company and it was just thrown at me and Im still learning and this forum as been a Hugh Asset and I thank everyone for there input.

What is the item in the policy to disable the install of apps.

Thanks
Tekjock

Last edited by tekjock : 08-30-2006 at 02:51 PM.
Offline  
Closed Thread


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On





Copyright 2004-2014 BlackBerryForums.com.
The names RIM and BlackBerry are registered Trademarks of BlackBerry Inc.