I would prefer to give the benefit of the doubt to my users. I
distrust outside deliveries more, and I expect my users to make
mistakes. Besides, if the account is compromised, I'm not very
worried that the abuser is going to run a dictionary attack against
the rest of the company, or my server for that matter. Further,
abuse of a dictionary attack is much smaller than abuse of a
compromised account. If authentication is sufficient protection
against open relays, than is should be sufficient protection against
dictionary attacks.
At 7/31/2006 12:08 PM, you wrote:
And what if one of them get their password
stolen/hacked/misused? What if there network is compromised? It is
either fail safe and fail not so safe. What would you prefer to
happen if not fail safe?
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
