Rogerio, If you've got users that are able to open e-mails containing trojans, transported by various attachment types, then you have a bigger problem. You either have:
1. No firewall/AV software or 2. Bad firewall/AV software or 3. Poorly configured firewall/AV software. Plug your security holes from this end first, and you won't have to worry about the multiple connections "issue." Jim Blunt -----Original Message----- From: Chris Scharff [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 17, 2002 12:23 PM To: Exchange Discussions Subject: RE: Outlook session sharing disable In your scenario there is certainly a security issue, but I don't see that issue as Outlook. Not that there aren't a number of security issues with Outlook, the scenario as described simply does not seem to be one of them. A trojan has access to the contents of my inbox. So what? It could also have access to the contents of my hard drive and any file shares to which I might have permissions. What is the Outlook specific security issue? > -----Original Message----- > From: Rogerio Silva [mailto:[EMAIL PROTECTED]] > Sent: Thursday, January 17, 2002 2:22 PM > To: Exchange Discussions > Subject: RE: Outlook session sharing disable > > > It is easy to develop some sort of trojan, that once installed > and running at a particular machine, can use an active > connection from the user's Outlook to the Exchange Server, to > have free access to the user's mailbox. So, any form of > strong authentication that could be used to enforce the > security of access to the Exchange Server is useless, because > an authenticated Outlook-Exchange session can be largely used > by whatever process running on that machine. _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
