Lee - there is one caveat to what you have stated...
The question was what were the security implications of allowing users to
use POP3 to access external email servers (not the exchange server and you
are correct about POP3 to the exchange server)...
The external email servers should have a
Interesting idea but I suspect anyone attempting to access a server
would first run several different port scans on the system to determine what
is active and what is not... I doubt serious hackers would think twice about
a server name verses what ports were active and what services were
There are several options for a small business to obtain inexpensive
protection...
A couple of methods:
1. If you have a small number of machines to protect you can use one of the
private software firewall on the market (such as BlackICE or ZoneAlarm) and
at least have some filtering in place
Hi guys,
To add to this thread ... Using SSL would make this tremendously more
secure as the SSL connection negotiations between the client browser and the
Apache server (or any https server) are executed and authenticated prior to
any data passing between the server and the client - bottom