Firewall Wizards mailing list archives
Outlook Web Access - Paranoid?
From: "Mark L. Evans" <MEvans () CO SLC UT US>
Date: Tue, 26 Nov 2002 11:00:40 -0700
I have really enjoyed the excellent information I've gleaned from this list over the past few months. I'm in need of some help from the list members on the issue of securing Outlook Web Access. We're trying to come up with the least dangerous method of allowing our users to check their email on MS Exchange. We currently allow them to use POP3 only. Our management would like to use Outlook Web Access. I have followed the issue on several mailing lists. I know it's a bad idea to use Exchange at all but management thinks I am too paranoid on this issue. It seems the best method is a reverse proxy using squid on a DMZ machine and then into the IIS server on the inside over SSL. What are your opinions/suggestions on this issue? Do you have any other methods that are more secure? TIA, Mark L. Evans - CISSP _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Outlook Web Access - Paranoid? Mark L. Evans (Nov 26)
- Re: Outlook Web Access - Paranoid? Paul Robertson (Nov 26)
- Re: Outlook Web Access - Paranoid? Paul D. Robertson (Nov 26)
- <Possible follow-ups>
- RE: Outlook Web Access - Paranoid? Symon Thurlow (Nov 26)
- RE: Outlook Web Access - Paranoid? Steve Evans (Nov 28)
- RE: Outlook Web Access - Paranoid? Paul D. Robertson (Nov 28)
- RE: Outlook Web Access - Paranoid? Frank Knobbe (Nov 28)
- RE: Outlook Web Access - Paranoid? Christopher Lee (Nov 28)
- Re: Outlook Web Access - Paranoid? Mikael Olsson (Nov 28)
- RE: Outlook Web Access - Paranoid? Paul D. Robertson (Nov 28)
- RE: Outlook Web Access - Paranoid? Paul D. Robertson (Nov 28)
- Re: Outlook Web Access - Paranoid? Paul Robertson (Nov 26)