On Thu, 2 Mar 2000, Jason Haar wrote:
> <stuff on securing Exchange deleted>
>
> We've taken a different tack. Instead of OWA, we've gone with the Web-based
> IMP package frontend'ed on a Unix server in the DMZ, and it uses IMAP to
> talk to the Exchange server. Only opens one port between the DMZ and the
> LAN, and puts a Unix box in front of a NT box - should make it pretty hard
> to break through :-)
I developed the Secure External Access System (SEAS) for a customer. SEAS
provides encrypted access to authorized personnel to Web Servers behind the
firewall. One of the services supported through this arrangement is access
to Microsoft Exchange through OWA.
The only notable problem has been getting some "lusers" to configure their
browsers to support the offered triple DES encryption algorithm. ;-(
Merton Campbell Crockett
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
