You can use POP3, IMAP or HTTP to allow users access to their email.
As far as I can see MS POP and IMAP dont have the problem of *nix type OS's
with regards vulnerabilities in these products.
Therefore you only need to allow one of these ports to be open.
HTTP is the nicest and easiest to use. The others require some technical
knowledge to configure the clients. You can even get SSL running on the
login screen and mailboxes so that they are somewhat secure.
You would be best to reverse proxy, or port map the services through rather
than allowing open access to the exchange server's http port.
I guess you could "hide" the port at some uncommon socket as well for
slightly more security etc http://mail.acme.com:1234
Richard
-----Original Message-----
From: Puetz, Scott [mailto:[EMAIL PROTECTED]]
Sent: 09 October 2000 16:10
To: Firewalls Firewalls (E-mail)
Subject: basics
* Please Note : This message was received from the Internet *
_____________________________________________________________
Please pardon the very GREEN question but I�ve done some research on the
internet and have not found an answer.
I want remote users who have DSL lines to access there mail from our
Exchange server.
I�ve read of the dangers of leaving port 25 open via a firewall, but, other
than dialing in, what other methods are others deploying that would allow
users to safely access their email remotely?
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
__________________________________________________________________
Confidentiality Notice
This message may contain privileged and confidential information. If you think, for
any reason, that this message may have been addressed to you in error, you must not
disseminate, copy or take any action in reliance on it, and we would ask you to notify
us immediately by return email to "[EMAIL PROTECTED]".
Schroder Investment Management Limited
31 Gresham Street
London EC2V 7QA
Registered Office at above address
Registered number 1893220 England
Regulated by IMRO
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
