RE: Ouut Oof Offfice responses - Security Risk
Disabling Out Of Office is different from disabling Forwards or Replies. You can restrict to the Internet the following: - Out of office, which restricts the one-time-only notification messages, which typically do not cause mail loops because they're one time only. - Forwards and replies (forwards by registry setting only in Exchange 5.5), which apply to Inbox Assistant, Rules Wizard and Out Of Office rules. Ed Crowley MCSE+Internet MVP kcCC+I Tech Consultant hp Services Protecting the world from PSTs and Bricked Backups! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Bowles, John L. Sent: Thursday, December 19, 2002 6:13 AM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk You're exactly right..that's what happened. I just didn't want to go into explaining all of that. But we cannot as mail administrators rely on our users to use this feature correctly. You're just setting yourself up for trouble. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 19, 2002 9:10 AM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk OOFs generally do not cause mail loops unless you are unwisely using a rule. - Original Message - From: Bowles, John L. [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, December 19, 2002 9:08 AM Subject: RE: Ouut Oof Offfice responses - Security Risk I finally got my manager to allow me to turn this feature off. I've been telling her that this will leave us vulnerable for possible mail loops. And wouldn't you know it...we had one and she was like..you're right. Please turn that off. I don't think it's a good idea just for that fact. Cause it's a nightmare trying to fix a mail loop. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 11:35 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk My company allows them to go out. I don't use the feature at all. Ed Crowley MCSE+I MVP Technical Consultant hp Services There are seldom good technological solutions to behavioral problems. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Chenault Sent: Wednesday, December 18, 2002 4:11 PM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe
RE: Ouut Oof Offfice responses - Security Risk
I finally got my manager to allow me to turn this feature off. I've been telling her that this will leave us vulnerable for possible mail loops. And wouldn't you know it...we had one and she was like..you're right. Please turn that off. I don't think it's a good idea just for that fact. Cause it's a nightmare trying to fix a mail loop. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 11:35 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk My company allows them to go out. I don't use the feature at all. Ed Crowley MCSE+I MVP Technical Consultant hp Services There are seldom good technological solutions to behavioral problems. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Chenault Sent: Wednesday, December 18, 2002 4:11 PM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: Ouut Oof Offfice responses - Security Risk
OOFs generally do not cause mail loops unless you are unwisely using a rule. - Original Message - From: Bowles, John L. [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, December 19, 2002 9:08 AM Subject: RE: Ouut Oof Offfice responses - Security Risk I finally got my manager to allow me to turn this feature off. I've been telling her that this will leave us vulnerable for possible mail loops. And wouldn't you know it...we had one and she was like..you're right. Please turn that off. I don't think it's a good idea just for that fact. Cause it's a nightmare trying to fix a mail loop. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 11:35 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk My company allows them to go out. I don't use the feature at all. Ed Crowley MCSE+I MVP Technical Consultant hp Services There are seldom good technological solutions to behavioral problems. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Chenault Sent: Wednesday, December 18, 2002 4:11 PM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Ouut Oof Offfice responses - Security Risk
You're exactly right..that's what happened. I just didn't want to go into explaining all of that. But we cannot as mail administrators rely on our users to use this feature correctly. You're just setting yourself up for trouble. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 19, 2002 9:10 AM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk OOFs generally do not cause mail loops unless you are unwisely using a rule. - Original Message - From: Bowles, John L. [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, December 19, 2002 9:08 AM Subject: RE: Ouut Oof Offfice responses - Security Risk I finally got my manager to allow me to turn this feature off. I've been telling her that this will leave us vulnerable for possible mail loops. And wouldn't you know it...we had one and she was like..you're right. Please turn that off. I don't think it's a good idea just for that fact. Cause it's a nightmare trying to fix a mail loop. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 11:35 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk My company allows them to go out. I don't use the feature at all. Ed Crowley MCSE+I MVP Technical Consultant hp Services There are seldom good technological solutions to behavioral problems. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Chenault Sent: Wednesday, December 18, 2002 4:11 PM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http
Re: Ouut Oof Offfice responses - Security Risk
Deny auto-replies to the Internet and you wont have to worry about users setting it up incorrectly. - Original Message - From: Bowles, John L. [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, December 19, 2002 9:13 AM Subject: RE: Ouut Oof Offfice responses - Security Risk You're exactly right..that's what happened. I just didn't want to go into explaining all of that. But we cannot as mail administrators rely on our users to use this feature correctly. You're just setting yourself up for trouble. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 19, 2002 9:10 AM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk OOFs generally do not cause mail loops unless you are unwisely using a rule. - Original Message - From: Bowles, John L. [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, December 19, 2002 9:08 AM Subject: RE: Ouut Oof Offfice responses - Security Risk I finally got my manager to allow me to turn this feature off. I've been telling her that this will leave us vulnerable for possible mail loops. And wouldn't you know it...we had one and she was like..you're right. Please turn that off. I don't think it's a good idea just for that fact. Cause it's a nightmare trying to fix a mail loop. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 11:35 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk My company allows them to go out. I don't use the feature at all. Ed Crowley MCSE+I MVP Technical Consultant hp Services There are seldom good technological solutions to behavioral problems. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Chenault Sent: Wednesday, December 18, 2002 4:11 PM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ
RE: Ouut Oof Offfice responses - Security Risk
Yea, I know. That's what I finally convinced my manager to turn that function off. Up until now, they wanted to keep that function. But once that happened she realized that we cannot leave ourselves open to a potential mail loop because of our users, using Outlook incorrectly. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 19, 2002 9:15 AM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk Deny auto-replies to the Internet and you wont have to worry about users setting it up incorrectly. - Original Message - From: Bowles, John L. [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, December 19, 2002 9:13 AM Subject: RE: Ouut Oof Offfice responses - Security Risk You're exactly right..that's what happened. I just didn't want to go into explaining all of that. But we cannot as mail administrators rely on our users to use this feature correctly. You're just setting yourself up for trouble. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 19, 2002 9:10 AM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk OOFs generally do not cause mail loops unless you are unwisely using a rule. - Original Message - From: Bowles, John L. [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, December 19, 2002 9:08 AM Subject: RE: Ouut Oof Offfice responses - Security Risk I finally got my manager to allow me to turn this feature off. I've been telling her that this will leave us vulnerable for possible mail loops. And wouldn't you know it...we had one and she was like..you're right. Please turn that off. I don't think it's a good idea just for that fact. Cause it's a nightmare trying to fix a mail loop. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 11:35 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk My company allows them to go out. I don't use the feature at all. Ed Crowley MCSE+I MVP Technical Consultant hp Services There are seldom good technological solutions to behavioral problems. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Chenault Sent: Wednesday, December 18, 2002 4:11 PM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED
RE: Ouut Oof Offfice responses - Security Risk
We had a virtual loop happen here from an OOF. Somebody went on vacation and set up OOF, then added an extra rule to auto-reply to all messages [1]. We have an app that uses a mailbox to send out daily updates, and has a rule on the mailbox to fire off a new message in response to anything sent directly to it. You guessed it - his OOF rule fired to it, and the secondary rule fired. He got an auto-reply back for both of them - the secondary rule continued to fire sending another note back to the unattended box, which sent another message, etc. . . The only thing that saved us was the Do not send limit on his mailbox. Darcy [1] I don't know what the guy was thinking - he said he wasn't sure which one was the OOF rule, so he set both. -Original Message- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 19, 2002 6:10 AM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk OOFs generally do not cause mail loops unless you are unwisely using a rule. - Original Message - From: Bowles, John L. [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, December 19, 2002 9:08 AM Subject: RE: Ouut Oof Offfice responses - Security Risk I finally got my manager to allow me to turn this feature off. I've been telling her that this will leave us vulnerable for possible mail loops. And wouldn't you know it...we had one and she was like..you're right. Please turn that off. I don't think it's a good idea just for that fact. Cause it's a nightmare trying to fix a mail loop. __ John Bowles Exchange Administrator Enterprise Support Engineering Celera Genomics [EMAIL PROTECTED] -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 11:35 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk My company allows them to go out. I don't use the feature at all. Ed Crowley MCSE+I MVP Technical Consultant hp Services There are seldom good technological solutions to behavioral problems. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Chenault Sent: Wednesday, December 18, 2002 4:11 PM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED
RE: Ouut Oof Offfice responses - Security Risk
This might help: http://www.equiinet.com/press/pressreleases/24_06_2002.htm -Original Message- From: Archie Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:02 PM To: Exchange Discussions Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Ouut Oof Offfice responses - Security Risk
Cut and cross posted from another list - some good ones to think about Tom Meunier I'm not in, but you have hit and now verified a live address. Please put me on your A list for resale to other spammers. I'm the president of the company, and obviously wealthy. Since I've just told you I'm away for two weeks, please go to the county tax assessor's web site and look up the location of my residence. Help yourself. Hello customer. I'm not in, and you can try contacting someone else in my firm who wants your business. The onus is, however, all on you, as I'm too lazy to delegate my email to somebody else while away. Please don't go visit our competitor, who is far too professional to send you an ascii answering machine message like this. /Tom Meunier -Original Message- From: Candee Vaglica [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:30 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk This might help: http://www.equiinet.com/press/pressreleases/24_06_2002.htm -Original Message- From: Archie Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:02 PM To: Exchange Discussions Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Ouut Oof Offfice responses - Security Risk
That Tom is that rare jewel... a wise Texan. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Friese, Casey Sent: Wednesday, December 18, 2002 1:17 PM To: Exchange Discussions Cut and cross posted from another list - some good ones to think about Tom Meunier I'm not in, but you have hit and now verified a live address. Please put me on your A list for resale to other spammers. I'm the president of the company, and obviously wealthy. Since I've just told you I'm away for two weeks, please go to the county tax assessor's web site and look up the location of my residence. Help yourself. Hello customer. I'm not in, and you can try contacting someone else in my firm who wants your business. The onus is, however, all on you, as I'm too lazy to delegate my email to somebody else while away. Please don't go visit our competitor, who is far too professional to send you an ascii answering machine message like this. /Tom Meunier -Original Message- From: Candee Vaglica [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:30 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk This might help: http://www.equiinet.com/press/pressreleases/24_06_2002.htm -Original Message- From: Archie Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:02 PM To: Exchange Discussions Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Ouut Oof Offfice responses - Security Risk
Got to love his wit. I have quite a bit of yours archieved as well -Original Message- From: William Lefkovics [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 4:25 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk That Tom is that rare jewel... a wise Texan. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Friese, Casey Sent: Wednesday, December 18, 2002 1:17 PM To: Exchange Discussions Cut and cross posted from another list - some good ones to think about Tom Meunier I'm not in, but you have hit and now verified a live address. Please put me on your A list for resale to other spammers. I'm the president of the company, and obviously wealthy. Since I've just told you I'm away for two weeks, please go to the county tax assessor's web site and look up the location of my residence. Help yourself. Hello customer. I'm not in, and you can try contacting someone else in my firm who wants your business. The onus is, however, all on you, as I'm too lazy to delegate my email to somebody else while away. Please don't go visit our competitor, who is far too professional to send you an ascii answering machine message like this. /Tom Meunier -Original Message- From: Candee Vaglica [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:30 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk This might help: http://www.equiinet.com/press/pressreleases/24_06_2002.htm -Original Message- From: Archie Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:02 PM To: Exchange Discussions Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Ouut Oof Offfice responses - Security Risk
'Archieved' is a good place for them. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Friese, Casey Sent: Wednesday, December 18, 2002 1:25 PM To: Exchange Discussions Got to love his wit. I have quite a bit of yours archieved as well -Original Message- From: William Lefkovics [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 4:25 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk That Tom is that rare jewel... a wise Texan. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Friese, Casey Sent: Wednesday, December 18, 2002 1:17 PM To: Exchange Discussions Cut and cross posted from another list - some good ones to think about Tom Meunier I'm not in, but you have hit and now verified a live address. Please put me on your A list for resale to other spammers. I'm the president of the company, and obviously wealthy. Since I've just told you I'm away for two weeks, please go to the county tax assessor's web site and look up the location of my residence. Help yourself. Hello customer. I'm not in, and you can try contacting someone else in my firm who wants your business. The onus is, however, all on you, as I'm too lazy to delegate my email to somebody else while away. Please don't go visit our competitor, who is far too professional to send you an ascii answering machine message like this. /Tom Meunier -Original Message- From: Candee Vaglica [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:30 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk This might help: http://www.equiinet.com/press/pressreleases/24_06_2002.htm -Original Message- From: Archie Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:02 PM To: Exchange Discussions Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Ouut Oof Offfice responses - Security Risk
Yea true the local paper just had a story about some thieves that were sending what appeared to be spam messages to companies in the area. From there they would get the out of office replies and then go rob those people blind knowing exactly how long they were going to be gone. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Friese, Casey Sent: Wednesday, December 18, 2002 1:17 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk Cut and cross posted from another list - some good ones to think about Tom Meunier I'm not in, but you have hit and now verified a live address. Please put me on your A list for resale to other spammers. I'm the president of the company, and obviously wealthy. Since I've just told you I'm away for two weeks, please go to the county tax assessor's web site and look up the location of my residence. Help yourself. Hello customer. I'm not in, and you can try contacting someone else in my firm who wants your business. The onus is, however, all on you, as I'm too lazy to delegate my email to somebody else while away. Please don't go visit our competitor, who is far too professional to send you an ascii answering machine message like this. /Tom Meunier -Original Message- From: Candee Vaglica [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:30 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk This might help: http://www.equiinet.com/press/pressreleases/24_06_2002.htm -Original Message- From: Archie Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:02 PM To: Exchange Discussions Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Ouut Oof Offfice responses - Security Risk
http://news.bbc.co.uk/1/hi/technology/2540307.stm -Original Message- From: Christopher Hummert [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 1:34 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk Yea true the local paper just had a story about some thieves that were sending what appeared to be spam messages to companies in the area. From there they would get the out of office replies and then go rob those people blind knowing exactly how long they were going to be gone. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Friese, Casey Sent: Wednesday, December 18, 2002 1:17 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk Cut and cross posted from another list - some good ones to think about Tom Meunier I'm not in, but you have hit and now verified a live address. Please put me on your A list for resale to other spammers. I'm the president of the company, and obviously wealthy. Since I've just told you I'm away for two weeks, please go to the county tax assessor's web site and look up the location of my residence. Help yourself. Hello customer. I'm not in, and you can try contacting someone else in my firm who wants your business. The onus is, however, all on you, as I'm too lazy to delegate my email to somebody else while away. Please don't go visit our competitor, who is far too professional to send you an ascii answering machine message like this. /Tom Meunier -Original Message- From: Candee Vaglica [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:30 PM To: Exchange Discussions Subject: RE: Ouut Oof Offfice responses - Security Risk This might help: http://www.equiinet.com/press/pressreleases/24_06_2002.htm -Original Message- From: Archie Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:02 PM To: Exchange Discussions Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: Ouut Oof Offfice responses - Security Risk
On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Ouut Oof Offfice responses - Security Risk
My company allows them to go out. I don't use the feature at all. Ed Crowley MCSE+I MVP Technical Consultant hp Services There are seldom good technological solutions to behavioral problems. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Chenault Sent: Wednesday, December 18, 2002 4:11 PM To: Exchange Discussions Subject: Re: Ouut Oof Offfice responses - Security Risk On a technical list I'm on that concerns Exchange (among other things) someone forwarded to the list someone's OOF from a major company. From his name and location the person found his address on the web. Since his OOF said he'd be gone for two weeks, out of town on vacation, he essentially is telling the whole world his house is unattended and ripe for picking. Bad idea. It's just a bad idea. - Original Message - From: Archie Call [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, December 18, 2002 2:01 PM Subject: Ouut Oof Offfice responses - Security Risk Our company is proposing that we allow the Ouut Oof Offfice feature to be turned on for Internet Mail in Exchange 5.5. I have seen comments on this newsgroup discussing many security reasons for not doing this! I have looked in the PDF file but am have diffculty locating this discussion. I remember someone who wrote a little story that was very convincing. The downsides I see are: potential for mail looping (bugs in Exchange or Mailbox filled up); you tell the cyber crooks that you are gone and your house can be robbed; you tell the spammer they have a valid address; much increased mail traffic especially during a virus outbreat; you send numerous messages to everyone in a ListServer. If anyone has anything to add here, it would be greatly appreciated. ...Archie Call Note: I misspelled OOO so as not trigger your filter. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
