Re: Securing Corporate Web Based Email

["Ivan Coric" <ivan.coric () workcoverqld com au>]

Hi Jeff,
http://www.linuxsecurity.com/ has just posted a link to an article on this subject.

http://www.linuxsecurity.com/articles/documentation_article-8834.html

direct link to the article
http://www.net-security.org/article.php?id=634

cheers
Ivan


Ivan Coric, CISSP
IT Technical Security Officer
Information Technology
WorkCover Queensland
Ph: (07) 30066414 Fax: (07) 30066424
Email: ivan.coric () workcoverqld com au

> > > Jeff McLaughlin <JMclaughlin () springsgov com> 01/29/04 08:33am >>>


 
Jeff McLaughlin
Okay, I realize that "secure" and "web based email" are contradictory but I
would be interested in hearing input from people who are successfully
running or allowing web based email in their corporate offices.

My issue is I support a City Government that has a very diverse user
community.  Picture all the City services your City delivers and you get the
idea.  We offer public kiosks, public classes (of course on internet mail)
and people that visit, consult, contract or belong to a City organization
have an expectation to be able to check their web based email.

Although, ensuring virus protection on all workstations is a start, we also
have needs to filter content and track abuse.  For example, our corporate
mail is scanned for content, spam, large attachments and viruses before
reaching the desktop.  Web mail would of course bypass this.

One question I have is, is there a document/paper that addresses web mail
content providers and examines how successful they are in scanning outgoing
mail for viruses.

A second, any known appliances or software that can assist with web based
mail content and tracking abuse.

Thanks for any ideas.  I really would like to find a way to successfully
integrate web mail as I believe it is a primary tool people use to manage
their lives.

-jeff mclaughlin



---------------------------------------------------------------------------
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any course! All of our class sizes are 
guaranteed to be 10 students or less. We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention, 
and many other technical hands on courses. 
Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off any course!  
----------------------------------------------------------------------------







***************************************************************************
Messages included in this e-mail and any of its attachments are those
of the author unless specifically stated to represent WorkCover Queensland. The contents of this message are to be used 
for the intended purpose only and are to be kept confidential at all times.
This message may contain privileged information directed only to the intended addressee/s. Accidental receipt of this 
information should be deleted promptly and the sender notified.
This e-mail has been scanned by Sophos for known viruses.
However, no warranty nor liability is implied in this respect.
**********************************************************************


---------------------------------------------------------------------------
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any
course! All of our class sizes are guaranteed to be 10 students or less.
We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention,
and many other technical hands on courses.
Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off
any course!
----------------------------------------------------------------------------