It depends on the needs. I work for a consulting organization and we must
allow POP3 through the firewalls in order to function as a business. But we
also make sure that there are strict rules in how it is used, the security
of it, and rules regarding encryption and sig's.
Allowing email access through the firewall is really a minor opening to the
world if done properly. It is much more economical than allowing individual
user dialup and there are less headaches than using VPN and any ISP.
Jason P. Wilcox
Manager, Security Services
4C Solutions Inc
http://www.4cs.com
-----Original Message-----
From: Watson, Peter
To: [EMAIL PROTECTED]
Sent: 6/14/00 9:39 AM
Subject: POP3 Service through Corporate Firewall
Does anybody have any comments, anecdotes, experiances with allowing the
POP3 service through a firewall. The proposed solution would be to allow
encrypted email go through a POP3 service as part of an overall EDI
solution.
1. Currently we only allow the SMTP service on a corporate basis.
2. 18 months ago we revised the firewall ruleset when we changed
firewalls
to specifically disallow the
POP3 service due to abuse by internal staff members.
3. My opinion is that we are a business and not an ISP so we shouldn't
allow
the POP3 service.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
