I found out today that I can access websites on my company's network. Is there some way to prevent that with ease. is there a BES firewall or some way to prevent this.

thank you
Tekjock

Your question is a bit confusing.

If you used Enterprise Activation (to get your work e-mail), aka BES, your BB may also have access to INTRAnet sites for your company, and is normal.

If you are not using any BES (can't get work e-mail from your BB), then that means you can probably access your company information from any computer with Internet access, and just isn't limited to Blackberry.

If you are saying you know all of this, and simply want to secure the information, the best thing you can do is do a password screen lock with a xx minute timeout where it will automatically lock. Although if you are hooked into a BES, I am surprised they didn't make that a policy.

Your BES administrator can disable intranet access easily enough if needed.

Sorry I was not clear. We do have email access with a BES. I was not the one who set it up and Im still a bit new with the BES. Is it one of hte policies on the BES or AD.

Is this the same question I have above, is this thru the BES.

ALSO, I guess my main concern here is, and is this possiable. Say a user installs a app on the BB, and there is a virus of some sort i could care less if it attacks the BB, but is it possiable for that virus to attact my Co's intranet.

Thanks guys and please forgive my BES Noobness.
Tekjock

in short see this:
Presentation - Blackjacking

background (the download link is live so the tools are available for testing)

Abstract:
Research in Motion's Blackberry technology has quickly become the defacto standard for executives and technical personnel alike to maintain unteathered remote access to critical data. Often regarded as inherently secure, most administrators deploy this solution without a full understanding of the technology or risks involved.

This presentation will demonstrate how an attacker could utilize many typical corporate blackberry deployments to directly attack machines on the internal networkxxx8212;behind your perimiter defenses! The tools and source code presented will be available for attendees. Techniques for reducing the risks associated with this technology will also be presented.

Materials:

Presentation Slides Blackberry Attack Toolkit (Including BBProxy)

in short, if they don't know the app then yes... someone could design an app to specifically attack your network that works from a blackberry. How feasable that is, well... not very. It's a painful process that might or might not produce very little results for the attacker and is probably highly unlikely to happen.

Your BES admin can also disable users installing their own 3rd party apps as well preventing this from happening.

Well thank you all for all the help and I am the BES admin for my company and it was just thrown at me and Im still learning and this forum as been a Hugh Asset and I thank everyone for there input.

What is the item in the policy to disable the install of apps.

Thanks
Tekjock