[NF] Clarification on web security

Author: Joe Yoder

Posted: 2014-07-30 at 09:25:34

I have a client who does business with a food supply company with an

extensive web site (gfs.com). Food orders are placed on the vendor website

using Chrome running on Windows Server 2003 via remote desktop session.

My client has been getting warning messages that, since they are running

XP, their access will be cut off soon as Microsoft has dropped support for

XP. I contacted the vendors sales rep and explained that Microsoft is

continuing support for Server 2003 until 2015 and that by that time my

client will have migrated to Server 2008. She was satisfied that this will

be satisfactory.

When the client got yet another warning message and I learned that the

vendor's support people believe that that RDP browser connections will not

be allowed in the future I decided that I had better try to clear things

up. The support people could not tell me what criteria is used to

determine whether or not to accept a connection. They believe their system

relies on their SSL certificate for that purpose. I contacted the

certificate vendor, Network Solutions, to try to determine the criteria

used to determine whether or not to allow connection to a browser.

The time I spent with Network Solutions support resulted in the conclusion

that the SSL certificate only assures a browser based client that the site

is safe for encrypted data transfers. There is no service available to

verify that the browser wishing to connect is running on an approved

operating system.

I am guessing the people I talked to at the food vendor's support

department don't actually write code and are simply misinformed about how

things work.

Any suggestions on how to resolve this?

Thanks in advance,

Joe

--- StripMime Report -- processed MIME parts ---

multipart/alternative

text/plain (text body -- kept)

text/html

---

_______________________________________________

Post Messages to: ProFox@leafe.com

Subscription Maintenance: http://mail.leafe.com/mailman/listinfo/profox

OT-free version of this list: http://mail.leafe.com/mailman/listinfo/profoxtech

Searchable Archive: http://leafe.com/archives/search/profox

This message: http://leafe.com/archives/byMID/profox/CABQeDnW5koMGN5kyKEBVyyVOos3YK2Fz8OQ_n5R8zRqR4hBSkw@mail.gmail.com

** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.

©2014 Joe Yoder