I'm protecting a very small and specialized network. The ONLY traffic I
permit is HTTP (80), SSL (443), and SMTP traffic. This traffic is allowed
to access only a few servers on the inside (NAT is used). A PIX 520 serves
as the firewall.
Our mail server is OUTSIDE of our protected network, and that's why I have
permitted SMTP traffic from some INSIDE clients on my PIX 520. The vast
majority of the email traffic will be outbound -- the clients send automated
email confirming various transactions that might occur. However, it is
possible that mail will be sent to these clients (perhaps never read, but
nonetheless sent).
Can you folks comment on the security issues associated with allowing SMTP
on this specialized network? I realize there would be a threat if someone
opened an email on the client which had a malicious attachment. But what
other attacks am I open to when I allow SMTP traffic?
TIA
Harry
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
