Quote:
Originally Posted by mykalberta
If you are serous about keeping these users then I would use log me in. I assume you are in a financial capacity given your username and logmein is likely the most secure option and when you decide to cut the employees there are no contracts to cancel and not computers to get them to ship back.
|
Ugh...LogMeIn is the last remote solution I would use. You are completely reliant on a third party, cloud system for authentication. Passwords are stored outside your network. You machines are using NAT traversal to circumvent firewalling.
LogMeIn is fantastic, and fantastic at what it does, but until they offer better security for enterprises, its not for me. They need to support SecureID fobs, or at the very least, let me hook my own RADIUS server into their infrastructure so that passwords and authentication can be stored and happen inside my network.
You are literally flying blind using LogMeIn - you have no idea who is connecting to your machines because all the trust is placed on LogMeIn to remain secure and their password DB’s intact. It’s such a juicy target I am amazed every day that it hasn’t been compromised yet.
Edit: This is just my opinion, not a criticism of Myk's recommendation, but of holes I see in using LogMeIn for production work.