Educause Security Discussion mailing list archives

Re: blocking port 25 at the border?

From: Curt Wilson <curtw () SIU EDU>
Date: Fri, 24 Aug 2007 10:44:56 -0500

Bob Bayn wrote:

Do you regulate port 25 at the border?


Yes, both incoming and outbound.

If so, what is your procedure for allowing an exception
(for a legit email server)?


A firewall rule worksheet must be submitted and approved. The host must
have a basic security assessment performed before the firewall rule is
placed.

What administrative approvals were required at your
institution before you could regulate port 25?


All it took was some pain of being blacklisted for sending spam from our
netblock and that cleared any bureaucratic hurdle without me needing to
do anything. sometimes pain is the only thing that makes change happen.


Bob Bayn
IT Security Team
Utah State University
Logan, UT



--
Curt Wilson
IT Network Security Officer
Southern Illinois University Carbondale
618-453-6237

GnuPG key: http://www.infotech.siu.edu/security/curtw.pub.asc

Current thread:

Re: blocking port 25 at the border?, (continued)
- Re: blocking port 25 at the border? Mark Borrie (Aug 23)
- Re: blocking port 25 at the border? Gary Flynn (Aug 23)
- Re: blocking port 25 at the border? Randy Marchany (Aug 23)
- Re: blocking port 25 at the border? Gary Flynn (Aug 23)
- Re: blocking port 25 at the border? Dave Koontz (Aug 23)
- Re: blocking port 25 at the border? H. Morrow Long (Aug 23)
- Re: blocking port 25 at the border? Mark Borrie (Aug 23)
- Re: blocking port 25 at the border? Kenneth Arnold (Aug 23)
- Re: blocking port 25 at the border? Lutzen, Karl F. (Aug 23)
- Re: blocking port 25 at the border? Matthew Keller (Aug 23)
- Re: blocking port 25 at the border? Curt Wilson (Aug 24)