Security Basics mailing list archives

Re: Outsourcing spam filtering and secuirty

From: Craig_Brauckmiller/LEK () lek com
Date: Fri, 19 Sep 2003 12:00:14 -0400





It really depends on how paranoid your company is.

We are looking at filtering solutions and have talked to a couple outside
services, i.e. MessageLabs and Black Spider.

Both claim that they do not read any emails of their clients and both are
willing to sign NDAs, but strictly from a security stand point, no, letting
a 3rd party route/filter your email is not a secure thing.  The more
fingers in the pie, the more of a risk you run for trouble.  Who is to say
that a disgruntled employee at that company wouldn't start snooping on
you...especially if you are a fortune 500 company like Bank of America or
some other big financial company.
"So, BofA is helping company X buy company Y.  Hmmmmm."

I suppose you could make the same arguement about Blackberrys.    For some
reason, people don't have a problem with them relaying email.  I guess the
process of "filtering"  is where people run into problems.

Just my $0.0000000002 worth.

Craig Brauckmiller




Tony Brisco <tony_brisco () yahoo com> on 09/18/2003 11:22:24 PM

To:    security-basics () securityfocus com
cc:

Subject:    Outsourcing spam filtering and secuirty


Hi,

Is trusting third party with the corporation's MX
records for spam filtering purposes is widely used ?
Accepted ?  And how secure ?

I appreciate in advance your comments and suggestions.

Tony Brisco

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com

---------------------------------------------------------------------------
Captus Networks
Are you prepared for the next Sobig & Blaster?
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Precisely Define and Implement Network Security
 - Automatically Control P2P, IM and Spam Traffic
FIND OUT NOW -  FREE Vulnerability Assessment Toolkit
http://www.captusnetworks.com/ads/42.htm
----------------------------------------------------------------------------

















---------------------------------------------------------------------------
Captus Networks 
Are you prepared for the next Sobig & Blaster? 
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans 
 - Precisely Define and Implement Network Security 
 - Automatically Control P2P, IM and Spam Traffic 
FIND OUT NOW -  FREE Vulnerability Assessment Toolkit 
http://www.captusnetworks.com/ads/42.htm
----------------------------------------------------------------------------

Current thread:

Outsourcing spam filtering and secuirty Tony Brisco (Sep 19)
- Re: Outsourcing spam filtering and secuirty Roger A. Grimes (Sep 19)
- Re: Outsourcing spam filtering and secuirty Matt Taber (Sep 19)
- Re: Outsourcing spam filtering and secuirty Chris Ditri (Sep 19)
- Re: Outsourcing spam filtering and secuirty chort (Sep 22)
- <Possible follow-ups>
- RE: Outsourcing spam filtering and secuirty jburzenski (Sep 19)
- Re: Outsourcing spam filtering and secuirty Craig_Brauckmiller/LEK (Sep 19)
- RE: Outsourcing spam filtering and secuirty Timothy Onsomu (Sep 19)
  - New Secure Enterprise Magazine from Network Computing Steve (Sep 23)
- Re: Outsourcing spam filtering and secuirty Dana Rawson (Sep 19)