At 10:14 08/08/00 -0400, Hudak, Tyler wrote:
> >Anyway, I don't see why the guy wan't to block attachments? if it is
> >because of viruses and the like, he can simply filter http traffic with
> >an antivirus product (and here there are many solutions,including
>*sweeper).
>
>He probably wants to block attachments because you cannot control what is
>being sent out through them. Proprietary or confidential company documents
>could be sent out through a web-based email account and most likely not get
>noticed. If you tried to send it out through the company's email, then
>there would be a much greater chance of getting caught.
but then he must block (or at leas watch) many other channels: ftp put,
http post/put, ...
which makes his job a hard one. Also, there are ways to transfer things
using any
protocol, be it ICMP. so, the job is really hard when you don't have
certain level
of trust inside (I don't mean one should fully trusted internal users. but
their
collaboration is somewhat desired).
cheers,
mouss
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
