On Sun, Oct 27, 2013 at 1:19 PM, Jay Ashworth <[email protected]> wrote:
> > Alas, it can't. Using it against LI would work, cause you have a hope of > knowing what address space their proxies are in. > LI's behavior is unique. LI is probably the only one you need to detect. > You can't do that generically, unless you somehow whitelist the IPs your > users will be validly coming from, or figure out a way to determine what > client is connecting. > This may be easier than you think, if remote account access is allowed only using Web-based mail, and company managed mobile devices. Whitelist the cell carrier's mobile network, using ActiveSync. An IMAP connection attempt from anywhere is immediately suspect. > -- jra > -- -JH
