On Thursday, 14 August, 2003, at 23:00, Entourage:mac Talk wrote:
Is there any hope of using MAPI for this? Our server group won't turn on
OWA because of security concerns.
What I would LOVE to hear is them explaining how MAPI is magically more
secure than DAV, which can be run with SSL. I have yet to see any empirical
evidence that isn't laughable.
I think the argument against enabling additional services is that, for every
enabled service, there is an increased possibility of a security
vulnerability in the service compromising the security of the server (i.e. A
server that runs one service is less likely to have a security hole compared
to a server running 5 services).
However, running a protocol in a secure manner does not automatically do this. That kind of simplistic calculation doesn't follow. A firewall allowing nothing but telnet through is FAR more insecure than a firewall allowing IMAP/LDAP/DAV/SMTP with SSL encryption.
john
--
To unsubscribe: <mailto:[EMAIL PROTECTED]>
archives: <http://www.mail-archive.com/entourage-talk%40lists.letterrip.com/>
old-archive: <http://www.mail-archive.com/entourage-talk%40lists.boingo.com/>
