Most web based mail services now do a virus scan before accepting email. Hotmail
does.
Perhaps a policy of only allowing web based email from services that do
virus/Trojan scan on mail.
You are not stopping web mail but are pointing out the security implications.
All you need to do is have a list of acceptable services.
"Butler, Ken" <[EMAIL PROTECTED]> on 05/01/2001 10:25:39 AM
To: "Firewalls. Gnac. Net \(E-mail\)"
<[EMAIL PROTECTED]>
cc: (bcc: Bill Royds/HullOttawa/PCH/CA)
Subject: Advisability of Web Mail
I apologized for being OT, but I wasn't sure where to get feedback on this
one
I'm in the process of updating our Internet acceptable use policy in
anticipation of the new FDIC privacy regulations. I'm trying to decide what
to do about web base mail (Hotmail et al.). Web based mail is a way for
viruses and Trojans to get in.
I could:
Ignore it
Try to block it - (kinda like being a bilge pump on the Titanic).
Set a policy banning it. It's never a good idea to set a policy that will
be unpopular AND unenforceable.
Try to regulate it by policy. Less unpopular, but still unenforceable.
What are other people doing?
Ken Butler
Liberty Bank
-
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
