RE: POP3

Fri, 01 Mar 2002 14:01:23 -0800 

Take the following into consideration...

Given:
        *  POP3 authentication is clear text
        *  MS Exchange authenticates against NT/2000 user accounts

Therefore:
        *  The POP3 username & password are the same credentials used to
access network resources.
        *  Compromised POP3 credentials will also compromise the entire
domain.

Conclusion:  POP3 is a bad idea, even in a LAN.

- Lee


-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Saturday, February 23, 2002 4:00 PM
To: [EMAIL PROTECTED]
Subject: POP3




My users want me to to give them POP3 access via 
the firewall. We have an Exchange Server runnig with 
a Checkpoint Firewall. Are there any security issues 
that I need to watch out
  • ... shady
    • ... Dominik Birk
    • ... Kanikkannanl PN-149709 Dept-corp Audit Div Desg-Asst.Manager 1/421037 Ph-43983/45283
    • ... Benedikt Wildenhain
    • ... Ferguson, Scott
    • ... McGee, James
    • ... Chris Payne
    • ... Vidas, Tim
    • ... Burleson, Lee (IA)
      • ... Gary McKinney
        • ... H�kan Stensby
    • ... Ferguson, Scott
    • ... irado furioso com tudo
    • ... Chris Payne

Reply via email to