[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] Auto logout of Policy Editor?
If you have an assistant, a *security* assistant, that leaves themselves logged into the policy in read/write mode for up to six hours, then I would certainly consider getting another one. Can manage.lock be deleted while a connection is established? How about having two versions of the rulebase, one that doesn't allow the gui clients access, and periodically ATing the restricted one and the real one, combined with a manage.lock delete? Paul. -----Original Message----- From: Michael Sleeper [mailto:[email protected]] Sent: 14 October 2000 23:41 To: 'Tom Sevy'; Check Point FW List (E-mail) Subject: RE: [FW1] Auto logout of Policy Editor? After having this problem in the past, I scheduled a bounce program that stops and restarts the FW1 service every 6 hours. [ using WINAT to run a .bat file that runs the commands "net stop fw1svc ; net start fw1svc" ] This is NOT the perfect solution in that I have been caught trying to edit a policy and have had the service bounce on me. However, it does work should my assistant remain logged in from his workstation in read/write mode. When the time is up it will disconnect anyone and allow a fresh connection into the firewall in read/write mode. I would love to hear of a better way. Mike -------------------------------------------------- Mike Sleeper CCSA/CCSE Information Technology Dept. Augusta-Richmond County Govt. http://www.co.richmond.ga.us [email protected] -------------------------------------------------- -----Original Message----- From: Tom Sevy [mailto:[email protected]] Sent: Saturday, October 14, 2000 5:05 PM To: Check Point FW List (E-mail) Subject: [FW1] Auto logout of Policy Editor? Does anyone know of a way to automatically logout the Policy editor after an Idle timeout? Any recommendations? The FW Management Console is pretty hardened, and I do not have a way to connect it to kill the connection at this time. It is an NT Mgmt console. ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ----------------------------------------------------------------------------------------------------------------------- This e-mail is intended only for the above addressee. It may contain privileged information. If you are not the addressee you must not copy, distribute, disclose or use any of the information in it. If you have received it in error please delete it and immediately notify the sender. evolvebank.com is a division of Lloyds TSB Bank plc. Lloyds TSB Bank plc, 71 Lombard Street, London EC3P 3BS. Registered in England, number 2065. Telephone No: 020 7626 1500 Lloyds TSB Scotland plc, Henry Duncan House, 120 George Street, Edinburgh EH2 4LH. Registered in Scotland, number 95237. Telephone No:Lloyds TSB Bank plc and Lloyds TSB Scotland plc are regulated by the Personal Investment Authority and represent only the Scottish Widows and Lloyds TSB Marketing Group for life assurance, pensions and investment business. Members of the UK Banking Ombudsman Scheme and signatories to the UK Banking Code. ----------------------------------------------------------------------------------------------------------------------- ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|