+ Post New Thread
Results 1 to 10 of 10
Internet Related/Filtering/Firewall Thread, Home Access Plus - How Secure? in Technical; Hi We are currently looking at Remote Access Solutions for both Students and Staff (primarily staff, but students would be ...
  1. #1

    Join Date
    Apr 2008
    Posts
    88
    Thank Post
    7
    Thanked 6 Times in 5 Posts
    Rep Power
    14

    Home Access Plus - How Secure?

    Hi

    We are currently looking at Remote Access Solutions for both Students and Staff (primarily staff, but students would be nice as well)

    Obviously we've looked at Rack Mount VPN Solutions for instance, but for the number of users inc Students, this would cost rather a lot.

    One other thing which recently caught my attention was the Home Access Plus system that is available (including seen on Edugeek)

    Home Access Plus+

    My main query/concern with this though, is how secure is it?


    One other option which I saw yesterday, is we are currently looking to change our VLE, and we had a demo of FROG. FROG have an additional "add on" which allows Secure Remote Access to both files, and software on the Network, all securely.

    What are your thoughts? Which would you go for?

    Would appreciate feedback, and opinions.

    Are you an Home Access Plus school, how secure do you feel it is?

    Thanks

    Andrew

  2. Thanks to andy_d from:

    reggiep (30th March 2011)

  3. #2

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,808
    Thank Post
    272
    Thanked 1,135 Times in 1,031 Posts
    Rep Power
    349
    Never used home access plus but you have adito/open vpn-als which does exactly what you want from the web browsers and is completely free. maybe worth looking at?

  4. #3

    Join Date
    Sep 2008
    Location
    Durham
    Posts
    129
    Thank Post
    1
    Thanked 30 Times in 28 Posts
    Rep Power
    24
    In my experience, the Frog Secure Gateway doesn't work most of the time, access to network files doesn't work at all.

    Weve had lots of issues with Frog which they seem unable to resolve for us, hence we are seriously contemplating a move to another platform.

    If you're a schools agreement holder, seriously look into using RDS on Server 2008 R2. Depending on how many clients you need to provide remote access for, it can be set up fairly easily and is very cost effective and secure.

  5. Thanks to riffleman from:

    andy_d (30th March 2011)

  6. #4
    sister_annex's Avatar
    Join Date
    Jan 2009
    Location
    Wolverhampton
    Posts
    593
    Thank Post
    99
    Thanked 135 Times in 119 Posts
    Rep Power
    49
    Home access plus is a hosted website so it is as secure as an ssl connection... (we have 4 internally hosted websites that are published using our ISA with ssl - they are as secure as the usernames and passwords that are used to access the site)

    For file hosting in terms of home access plus is also just as secure as your ntfs security

  7. #5

    Join Date
    Apr 2008
    Posts
    88
    Thank Post
    7
    Thanked 6 Times in 5 Posts
    Rep Power
    14
    So the short of it is, is that if we enforce stronger password integrity for staff users, then it should be fine?

    I see Home Access Plus also has a login tracker as well, so I guess if you keep an eye on that you can see if you have any "odd" attempted activity going on etc

    I'll have another look at it shortly.

    Do any other schools use this on non RM?

    We're on a Vanilla Server 2008 Network

    Thanks
    Andrew

  8. #6
    sister_annex's Avatar
    Join Date
    Jan 2009
    Location
    Wolverhampton
    Posts
    593
    Thank Post
    99
    Thanked 135 Times in 119 Posts
    Rep Power
    49
    Quote Originally Posted by andy_d View Post
    So the short of it is, is that if we enforce stronger password integrity for staff users, then it should be fine?

    I see Home Access Plus also has a login tracker as well, so I guess if you keep an eye on that you can see if you have any "odd" attempted activity going on etc

    I'll have another look at it shortly.

    Do any other schools use this on non RM?

    We're on a Vanilla Server 2008 Network

    Thanks
    Andrew
    IMO Passwords are only as strong as the person using them and their ability to remember them and not tell others. Forcing people to have strong passwords can be more harm than good as most in my experience will not be able to remember them and will write them down.

    The logon tracker will only work internally unfortunately it is better to use the IIS logs for this purpose.

    We are a vanilla 2003 network and although not currently using HAP+ fully will be looking to move to it in the near future.

    Mark

  9. #7

    Join Date
    Jul 2009
    Posts
    30
    Thank Post
    0
    Thanked 4 Times in 3 Posts
    Rep Power
    11
    If you are looking at Home Access + I would also consider taking a look at filerun also. This runs across SSL.

  10. #8
    dezt's Avatar
    Join Date
    Dec 2005
    Location
    Lancs
    Posts
    1,026
    Thank Post
    157
    Thanked 58 Times in 46 Posts
    Rep Power
    29
    We are a vanilla 2003 network with HAP+ installed, and it works fine.

  11. #9

    john's Avatar
    Join Date
    Sep 2005
    Location
    London
    Posts
    10,535
    Thank Post
    1,496
    Thanked 1,051 Times in 920 Posts
    Rep Power
    303
    Been trialing HAP for a few months at work, and going to roll it out after Easter to two faculties and its been a great success, stick an SSL Certificate on IIS and then bobs your aunty

  12. #10
    nickbro's Avatar
    Join Date
    Jul 2010
    Location
    Gilwern, Wales
    Posts
    3,520
    Thank Post
    37
    Thanked 501 Times in 432 Posts
    Rep Power
    113
    HAP+ is only has secure as the passwords users use, as with anything. Since the website impersonates the logged on user, you get all of the NTFS security there in. HAP will work on HTTP, but it is highly recommended to use HTTPS as the username/passwords are sent in clear (IIS basic auth).

    Since the users are only allowed into unc paths that you set, it prevents them from hacking there way into other areas, this is done thankfully but using drive letters in any API call made by HAP's sites rather than full UNC paths.

SHARE:
+ Post New Thread

Similar Threads

  1. Secure Site Access
    By zippo in forum Wireless Networks
    Replies: 4
    Last Post: 13th December 2010, 10:14 PM
  2. Replies: 1
    Last Post: 24th February 2009, 07:45 PM
  3. Secure Access to Windows Networks: Any Interested Beta Testers?
    By FAA in forum Network and Classroom Management
    Replies: 0
    Last Post: 24th February 2009, 09:43 AM
  4. Censornet Secure Shell Access
    By leon in forum *nix
    Replies: 5
    Last Post: 23rd February 2007, 10:16 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •