If I interpret your question right, my answer would be that there is no
need for a hosting agent to visit your site at all except to gather
marketing info or make a proposal for more work. I would not let a third
party with little (or no) contractural binding to maintain
confidentiality of your internal site to visit and poke around. Yes, I
am very skeptical about site visits suggested by vendors which are not
initiated by me.

Depending on the router's capabilities, they could "pinhole" their way
into your internal network fairly easily. Do you have access to the
router settings? Can you lock it down? Do you trust your provider?

Nasty questions, but then we live in a bit of a nasty time.

Dennis Hassell
Dennis Hassell and Associates


-----Original Message-----
From: Gary Sielaff [mailto:[log in to unmask]] 
Sent: Friday, June 13, 2003 11:24 AM
To: [log in to unmask]
Subject: [HP3000-L] Where lays the responsibility?

Am I wrong in saying that it is the "Connectee" that has the
responsibility for security to his site?
Why would the Agent who is hosting the application want to come to my
site and check out my
network, internet, modems, vlan, etc. etc.?  They supplied me the
router, all addresses, signon and password.

Anyone

Gary Sielaff
IS Mgr
City of Moses Lake, Wa.

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *