.edu mail is so much fun isnt it? We use MAPI only for Faculty and Sraff on campus POP3 / SMTP for Students on campus and POP3 / SMTP & OWA for all off campus access. We also allow anyone on campus to use POP3 / SMTP for their own personal e-mail accounts. The Corporate types think that's nuts because of viruses, security, support, etc. but they don't understand that you simply can not tell a tenured professor that he cant use his Erols e-mail on campus (you cant tell a student whos folks are paying the big bills that either). I looked at a lot of the "gateway" type antivirus products but found that it would be a major headache on a college campus because in order to filter POP3 for viruses you have to set it up in a proxy kind of configuration - you would have to tell the gateway about all of the different POP servers used and you would have to configure each client to use the gateway for POP - not gonna happen! Finally I found a hardware firewall product from a company called Fortinet that scans HTTP, POP3, SMTP and IMAP for viruses at the packet level so it doesn't matter who or where the servers are - it is complketely transparent to the end users and the Exchange box. I have been running it since Christmas and it seems to be running really well.
Jeff Hague Network Manager Randolph-Macon College -----Original Message----- From: Matt Plahtinsky [mailto:[EMAIL PROTECTED] Sent: Thursday, June 12, 2003 1:52 PM To: Exchange Discussions Subject: POP = Bad? -- SMTP = Good? List, This might be more appropriate for a firewall/security list but it involves email and I don't belong to one of those yet so I'll post my question here. I'm curious as to how many of your companies allow internal clients to access POP mail externally. The reason I'm asking is because I see POP mail as security risk. Let me explain. Our firewall strips all but a few attachments from our incoming SMTP email. With POP however attachments cannot be striped leaving a hole for new virus that aren't detectable yet by our virus software. I'm going to try to talk management into letting me block POP. Is blocking incoming POP something other company do? Is there some other way to secure incoming POP mail? Matt _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=& lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&lang=english To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]