Jump to content

Recommended Posts

Posted

Hi, I am just wondering about the Security concerns of installing Citrix Workspace (Windows) on a non-business asset. Is it possible to transfer Malware from that non-business system to the Citrix Work Environment?

 

Thanks

Wes

Posted

Hello @Wes Kreider

Yes, in principle this would be possible. If client-drive mapping is possible, then the local client drives of the non-business device are available in the Citrix session. This may allow compromised files to be transferred to the Citrix environment or similar.

 

Various approaches are therefore being used to counteract this. For example:

  • Antivirus Solution in Citrix Environment
  • Endpoint Analyze with security scan
  • Disable Client-Drive-Mapping and Clipboard for unsecure devices
  • and so on

Best regards,
Michael 

 

Posted

However it requires a known bad actor to push the file.  If a program is running directly on the system it can't traverse using typical methods.  However screen scrape, or keyloggers can track what you are doing, unless you enable those protection features.

Are you looking from a hardening the system side, or from someone looking to attack the system side.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...