On Wed, Feb 26, 2003 at 03:50:44PM -0700, scott wrote:
> On Wed, 2003-02-26 at 15:38, Clifton Royston wrote:
> > On Wed, Feb 26, 2003 at 01:35:16PM -0700, scott wrote:
> > > I'm looking for a Linux-based POP mail proxy to put in my company's DMZ
> > > to field requests from sales personnel running POP clients on the
> > > Internet. The mail these folks need would be on a MS Exchange 5.5
> > > server, inside on the LAN. I don't want to open ports on the firewall
> > > directly into the Exchange server - rather, I want to add an extra layer
> > > or buffer of security between Exchange and that big bad Net (and I'm not
> > > confident it is a secure enough product anyway). So I'm wondering if
> > > qpopper can fill the bill. I would need to have qpopper use my internal
> > > Active Directory to authenticate users, and allow them to pick up their
> > > POP mail from the Exchange server. Has anyone done a config like this,
> > > or can anyone offer suggestions on using qpopper in this way?
> >
> > Popper can deliver the mail to the user, but it is not a proxy; it
> > includes no features for getting the mail from Exchange to its own
> > server. You could do this with a program such as fetchmail, I suppose,
> > but I am not sure this combination really does what you want.
> >
> > -- Clifton
>
> Well, actually, that sounds like it might just do what I want! But now
> I'll have to find someone, who would know how to get a request from a
> POP client, sent to qpopper, to launch fetchmail, to get the mail off
> the Exchange server, that lived in the house that Jack built. Or
> something like that. Now where would I find one of those???
That's just it - I don't think you will. Fetchmail would work OK if
you would want *all* POP mail for certain users to be fed to the
Qpopper server all the time. I don't think it will work to have it
fired off when qpopper is starting up and pull down the mail at that
moment. Qpopper needs to have the mail already waiting on the hard
disk for it once the user authenticates.
I think you need an actual proxy server for what you want to do, and
presumably one which does a lot of data checking against buffer
overflows, etc. if you want it to protect the security of the Exchange
server.
-- Clifton
--
Clifton Royston -- LavaNet Systems Architect -- [EMAIL PROTECTED]
"If you ride fast enough, the Specialist can't catch you."
"What's the Specialist?" Samantha says.
"The Specialist wears a hat," says the babysitter. "The hat makes noises."
She doesn't say anything else.
Kelly Link, _The Specialist's Hat_
