Speaking of mail etc
Timothy M. Lyons
lyons at digitalvoodoo.org
Sat Jul 26 20:08:27 EDT 2003
As a rule, the Exchange client should not be used outside of the "Local"
network. We always recommend alternative access mechanisms (POP/IMAP/OWA*)
for external client access to the Exchange Server or, if feasible, VPN access
to utilize the full Exchange client.
--Tim
* IMHO - OWA should always be protected using something along the lines of
Whale e-Gap to protect against IIS/Exchage vulnerabilities.
On 26 Jul 2003 at 19:47 -0400 Johannes Ullrich was heard to utter:
JU> Interestingly, Microsoft suggested in its latest advisory, not to use
JU> Windows RPC (port 135) over the
JU> "open network". However, Exchange requires this port to work properly
JU> with Outlook. So one may wonder if Exchange is supposed to be used
JU> across a public network.
JU>
JU>
--
This message has been scanned for viruses and
dangerous content by MailScanner/Sophos on
mail.digitalvoodoo.org and is believed to be clean.
--
More information about the Discuss
mailing list