Securing Citrix Presentation Server In The Enterprise

Citrix Presentation Server allows remote users to work off a network server as if they weren't remote. That means: Incredibly fast access to data and applications for users, no third party VPN connection, and no latency issues. All of these features make Citrix Presentation Server a great tool for increasing access and productivity for remote users. Unfortunately, these same features make Citrix just as dangerous to the network it's running on. By definition, Citrix is granting remote users direct access to corporate servers?..achieving this type of access is also the holy grail for malicious hackers. To compromise a server running Citrix Presentation Server, a hacker need not penetrate a heavily defended corporate or government server. They can simply compromise the far more vulnerable laptop, remote office, or home office of any computer connected to that server by Citrix Presentation Server. All of this makes Citrix Presentation Server a high-value target for malicious hackers. And although it is a high-value target, Citrix Presentation Servers and remote workstations are often relatively easily hacked, because they are often times deployed by overworked system administrators who haven't even configured the most basic security features offered by Citrix. "The problem, in other words, isn't a lack of options for securing Citrix instances; the problem is that administrators aren't using them." (eWeek, October 2007). In support of this assertion Security researcher Petko D. Petkov, aka "pdp", said in an Oct. 4 posting that his recent testing of Citrix gateways led him to "tons" of "wide-open" Citrix instances, including 10 on government domains and four on military domains. The most comprehensive book published for system administrators providing step-by-step instructions for a secure Citrix Presentation Server Special chapter by Security researcher Petko D. Petkov'aka "pdp detailing tactics used by malicious hackers to compromise Citrix Presentation Servers Companion Web site contains custom Citrix scripts for administrators to install, configure, and troubleshoot Citrix Presentation Server

Citrix Presentation Server allows remote users to work off a network server as if they weren't remote. That means: Incredibly fast access to data and applications for users, no third party VPN connection, and no latency issues. All of these features make Citrix Presentation Server a great tool for increasing access and productivity for remote users. Unfortunately, these same features make Citrix just as dangerous to the network it's running on. By definition, Citrix is granting remote users direct access to corporate servers?..achieving this type of access is also the holy grail for malicious hackers. To compromise a server running Citrix Presentation Server, a hacker need not penetrate a heavily defended corporate or government server. They can simply compromise the far more vulnerable laptop, remote office, or home office of any computer connected to that server by Citrix Presentation Server. All of this makes Citrix Presentation Server a high-value target for malicious hackers. And although it is a high-value target, Citrix Presentation Servers and remote workstations are often relatively easily hacked, because they are often times deployed by overworked system administrators who haven't even configured the most basic security features offered by Citrix. "The problem, in other words, isn't a lack of options for securing Citrix instances; the problem is that administrators aren't using them." (eWeek, October 2007). In support of this assertion Security researcher Petko D. Petkov, aka "pdp", said in an Oct. 4 posting that his recent testing of Citrix gateways led him to "tons" of "wide-open" Citrix instances, including 10 on government domains and four on military domains. * The most comprehensive book published for system administrators providing step-by-step instructions for a secure Citrix Presentation Server. * Special chapter by Security researcher Petko D. Petkov'aka "pdp detailing tactics used by malicious hackers to compromise Citrix Presentation Servers. * Companion Web site contains custom Citrix scripts for administrators to install, configure, and troubleshoot Citrix Presentation Server.

Almost 100% of all Fortune 500 and Fortune 1000 companies use Citrix. Deploying Citrix MetaFrame Presentation Server 3.0 with Windows Server 2003 Terminal Services covers the new release to Citrix MetaFrame and how companies can deploy it in their disaster recovery plans. Server Based Computing has been established as a solid networking model for any size business. Why? Because it guarantees cost savings, fast deployment, scalability, performance, security and fast recoverability. Think "mainframe," but updated, pretty, shiny, and effective! Server based computing is the mainframe with a vengeance. Terminal Server and Citrix MetaFrame offer the advantages of the old mainframe coupled with the benefits, gadgets, and appeal of the personal computer. Manage applications from a central location and access them from anywhere Build scalable, flexible, and secure access solutions that reduce computing costs and increase the utility of your network The first book that covers Citrix MetaFrame Presentation Server 3.0 and Windows Server 2003 Terminal Services

The Only Official Guide to All Components of Citrix XenApp Platinum Edition Citrix XenApp, the new name for Citrix Presentation Server, is an end-to-end Windows application delivery system that offers both client-side and server-side application virtualization, for optimal application performance and flexible delivery options. It's the best access experience for any user. With the secure application architecture, organizations can centralize applications and data in secure data centers, reducing costs of management and support, increasing data security, and ensuring fast, reliable performance. Build and maintain a scalable, cost-effective, and secure enterprise application delivery infrastructure with expert advice from the Citrix Product Development Team. Citrix XenApp Platinum Edition Advanced Concepts: The Official Guide explains how to configure hardware and software and centrally manage enterprise resources. You'll learn to use Citrix Conferencing Manager, Citrix Access Gateway, Citrix Password Manager, and other tools. The book also includes in-depth coverage of advanced troubleshooting techniques, disk and memory tuning methods, and security strategies. Deploy Citrix XenApp across a large enterprise successfully Understand the network bandwidth requirements of server-to-server communication, and communication between Access Management Console and servers Secure remote access with Citrix Access Gateway Administer and customize Citrix Password Manager Maximize the capabilities of Citrix Conferencing Manager Secure Citrix XenApp using certificates, encryption, and smart cards Configure Virtual IP addressing, PDA synchronization, and SpeedScreen browser acceleration Gain insights from Citrix eLabs server load and capacity hardware testing

Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product. The only Citrix-authorized guide to securing the number one business access solution Written by Citrix engineers, this is the official security reference for Citrix Access Suite--the most complete solution for providing secure access to any business information resource regardless of location or device. Featuring outlines of specific threats and countermeasures, easy-to-follow checklists, and proven techniques, this is the only book to focus solely on securing each of the main components, including Presentation Server, Access Gateway, and Password Manager.

Everyone feels the pain of too many passwords to remember. Everyone can relate to the security exposure of weak passwords, chosen for convenience. And, everyone can relate to passwords placed in proximity to the workstation for a quick reminder. Unfortunately, that note can allow more than the intended user into the system and network. The average user today often has four or more passwords. And, security policies that focus on password complexity and password-change frequency can cause even more difficulty for users. This IBM® Redbooks® publication introduces IBM Security Access Manager for Enterprise Single Sign-On 8.2, which provides single sign-on to many applications, without a lengthy and complex implementation effort. Whether you are deploying strong authentication, implementing an enterprise-wide identity management initiative, or simply focusing on the sign-on challenges of a specific group of users, this solution can deliver the efficiencies and security that come with a well-crafted and comprehensive single sign-on solution. This book is a valuable resource for security officers, administrators, and architects who want to understand and implement an identity management solution in a medium-scale environment. This book is an update to the existing SG24-7350-01. IMPORTANT: Please note that in the latest version of SAM ESSO, the following two capabilities described in this SAM ESSO Redbooks publication have been removed: -Virtual appliance support -Mobile (iPad) support

Presents theories and models associated with information privacy and safeguard practices to help anchor and guide the development of technologies, standards, and best practices. Provides recent, comprehensive coverage of all issues related to information security and ethics, as well as the opportunities, future challenges, and emerging trends related to this subject.