Re: Trendmicro Viruswall Linux POP scanning
From: Gianluca (gluca_76@yahoo.com)Date: 02/26/02
- Next message: TheTrackers: "To The World"
- Previous message: TheTrackers: "Re: Packet Sniffing & Spyware"
- In reply to: JM: "Re: Trendmicro Viruswall Linux POP scanning"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: gluca_76@yahoo.com (Gianluca) Date: 26 Feb 2002 02:31:34 -0800
I know that the ideal solution is to implement e-mail traffic using a
internal mail server , unfortunately the real life is not ideal and
then also the dirty job must be done ;-)
However I've this kind of problem because I propose a security
solution also for small-business company who has very simple LAN and
,aboveall, not a considerable budget....
Please Jason, Have you some suggestion how to pratically realize your
solution using only a Linux Box ? Which pop client for linux do you
prefer ?( With secuirty in mind obviously )
Thanks for any comment
Bye
Gianluca
gluca_76@yahoo.com
"JM" <jmurdock@itraktech.com> wrote in message news:<omRd8.21253$2v1.737467@e3500-atl1.usenetserver.com>...
> "Wolfgang Kueter" <wolfgang@shconnect.de> wrote in message
> news:a57stv$vur$1@news.shlink.de...
> > JM wrote:
>
> > > If it is scanned the incoming SMTP, before delivery to the mailbox,
> > > why would you need to scan it during the POP download?
> >
> > That is the right question to ask. The only reason I can imagine are
> > connections to external POP3 servers that run no scanner. However such
> > connections should actually not be allowed and therefore should be
> > blocked by the firewall rules if one runs an own smtp server that
> > offers a scanner for incoming mail.
> >
> > > I know of nothing that does this. The closest thing would be the
> > > desktop scanners that proxy the POP session.
> >
> > Could offer a little help. Blocking POP3 connections to external
> > servers is the better way.
> >
> Agreed. I hate the desktop POP scanners anyway, they cause too many
> support headaches, adding an extra layer of configuration at the user level.
>
> Most of the time there is a web mail interface to the needed source, which
> then hopefully gets caught by the http scanner. But even then, if it's an
> ssl connection, it can't be scanned.
>
> Any corporate solution where web access is allowed must have at it's heart
> reliable, up to date desktop scanning and rational access controls at it's
> core. SMTP as the primary method of infection also needs to be addressed.
> Everything else offers only minimally incremental protection.
>
> Jerry
- Next message: TheTrackers: "To The World"
- Previous message: TheTrackers: "Re: Packet Sniffing & Spyware"
- In reply to: JM: "Re: Trendmicro Viruswall Linux POP scanning"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|