Hi,

As you have probably gathered, I am quite positive regarding Citrix. You are quite correct, once the remote (or even an internal) machine is compromised you are owned! The encryption of Citrix or the VPN will not defend you against a reasonably well-crafted net worm.

You need to go back a pace to the security of the remote device!

Perhaps the company should provide Users who need external communications with dumb terminal type devices...no floppy, no CD no USB etc................this will mean that no one in the family can compromise it...OK there are a lot of other security measures required, but I think that you get the picture

I wish you luck my friend, and keep it going until you get a result!

Cheers