"Watson, Peter" wrote:
> Does anybody have any comments, anecdotes, experiances with allowing the
> POP3 service through a firewall. The proposed solution would be to allow
> encrypted email go through a POP3 service as part of an overall EDI
> solution.
>
> 1. Currently we only allow the SMTP service on a corporate basis.
>
> 3. My opinion is that we are a business and not an ISP so we shouldn't allow
> the POP3 service.
I do not know your business setup, but as on a corporate network only corporate
work should be done...
Sometimes there (surprisingly but true) actually is a business need for a few
external POP boxes (e.g. for covert research). Simply offer to run a fetchmail
POP daemon on the mail server for company mail. Sure, the persons involved will
have to hand over the access information (server, name, password) to
administration for this, but after all it's all just business email, isn't it?
;-)
Then only allow the POPing mailserver to access the internet via POP. Make sure,
that noone will be allowed to log into that system.
Bye
Volker
begin:vcard
n:Tanger;Volker
tel;fax:+49 - 69 - 92901-213
tel;work:+49 - 69 - 92901-570
x-mozilla-html:FALSE
url:http://www.res.globalone.net/
org:Global One;Global Project Engineering
version:2.1
email;internet:[EMAIL PROTECTED]
title:Sr. Security Engineer
adr;quoted-printable:;;Stiftstrasse 23=0D=0A;Frankfurt;;60313;Germany
note;quoted-printable:Room 608=0D=0A
fn:Volker Tanger
end:vcard
