Administrators can block IM protocols at the firewall, but remember that doesn't prevent users from sending instant messages within the local network. You can use Group Policy to disable instant messaging altogether; with software restriction policies on XP/Server 2003, you can prevent IM programs from running.
If you decide to allow IM, here are some recommendations: disable the file transfer functionality and use an IM encryption program to provide security to IM communications (users at both ends of the communication must use encryption). Consider an IM Management solution that allows you to monitor instant messages to prevent misuse and apply policies to control IM usage. If you keep logs of IM communications, ensure that these files are secure so a hacker can't read the contents of conversations.
Encryption utilities are made by Zone Labs (IMsecure Pro) and TrillianPro. IM management software is made by Akonix, IMlogic, and IMbrella.
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.