Re: Blocking Outlook External POP/SMTP

[Nikhil Wagholikar <visitnikhil () gmail com>]

Hello Lee Anne,

The obvious reason for not allowing employees to use Outlook to access
their personal email accounts are:

1. Confidential information can leak out through personal emails, over
which the company has absolutely no control or access.

2. Employees are using company's infrastructure & resources such as
Internet, Computer/laptop/workstation, hard drive space and most
importantly, TIME. The time the employees are investing in checking
personal emails, if invested in doing something innovative for the
company, can not only lead to the greater sales or bring more
business, but also can build a brand name of the company in the
respective market.

3. Productivity of people will naturally affect (most likely
decrease), if personal activities are allowed within professional
environment in uncontrolled or unmonitored method.

4. Malicious attachments if downloaded through personal email accounts
on company's asset like laptop/desktop, can lead to data corruption or
spread of virus.

Solutions:

1. You can have a content management solution in place. This could
typically vary from Proxy to a sophisticated Content Filtering
solution.

2. To give bigger picture, you can consider usage of DLP solution
within you environment.

Hope this helps!

---
Nikhil Wagholikar
Practice Lead | Security Assessments & Digital Forensics
Network Intelligence India Pvt. Ltd. [NII Consulting]
Web: http://www.niiconsulting.com/
Comprehensive Information Security Training
http://iisecurity.in/courses/Training Calendar.html

On 12 March 2010 03:10, Hart, Lee Anne
<LeeAnne.Hart () montgomerycollege edu> wrote:
> Hello,
>
> I'm looking for information on preventing/prohibiting users from utilizing
> Outlook (at work) to retrieve their personal email from Gmail, AOL, Yahoo,
> Comcast, Verizon, etc.
>
> Looking for the following:
>
> * Reasons why users should not be allowed to use Outlook on their work
> computers to retrieve their personal email.
>
> * Tools/techniques to block this type of traffic. It seems the most common
> ports are 110, 465, 587, 993, and 995. Are there others?
>
> Any reference are much appreciated.
>
> Thank you!
> Lee Anne

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------