Educause Security Discussion mailing list archives

Re: SMTP Outbound

From: Robert Henry <rhenry () SCU EDU>
Date: Thu, 13 Feb 2014 07:59:40 -0800

Hi,

We pretty much allow everything out, I'm trying to reel that in.  Thanks
for the tip to keep an eye on 587 and see if there is traffic that looks
abusive.
--Bob

--
Robert Henry, CISSP
Chief Information Security Officer
Santa Clara University
rhenry () scu edu
408-554-5554
http://www.scu.edu/is/secure

Security Reminder: Always protect your online credentials and never share
your login information with others.  SCU will NEVER request your
credentials or login ID via email. Any and all email messages that do
request this or other personal information are fraudulent.  You should mark
it as SPAM and block the sender. Please contact the IT service center at
(408) 554-5700 if you have concerns or questions.


On Thu, Feb 13, 2014 at 5:46 AM, Di Fabio, Andrea <adifabio () nsu edu> wrote:

We only allow 25 in/out to/from our email servers but we do allow 587 out
as we found that many email clients, especially on mobile devices, will use
this port. So the new question is, are you allowing TCP 587 out of your
network without restriction and have you seen any issue with doing that? We
have not seen any issues thus far.



Andrea Di Fabio, CISO

Director, IT Security and Network

Norfolk State University

Office of Information Technology

Marie V. McDemmond Center for Applied Research, Rm 401M

555 Park Avenue, Suite 401

Norfolk, Virginia 23504

757-823-2896 Office

757-823-2128 Fax



NSU email communication is subject to permanent archival, it is covered
under the Freedom of Information Act (FOIA), and may be partially or fully
disclosed.



*From:* The EDUCAUSE Security Constituent Group Listserv [mailto:
SECURITY () LISTSERV EDUCAUSE EDU] *On Behalf Of *Robert Henry
*Sent:* Wednesday, February 12, 2014 5:35 PM
*To:* SECURITY () LISTSERV EDUCAUSE EDU
*Subject:* [SECURITY] SMTP Outbound



This is a simple, non-scientific poll, please respond off-list and I will
share the results with the list.



Do you block SMTP traffic, port 25, outbound at your border firewall?



Thanks!

--Bob


--
Robert Henry, CISSP
Chief Information Security Officer
Santa Clara University
rhenry () scu edu
408-554-5554
http://www.scu.edu/is/secure

Current thread:

Re: SMTP Outbound, (continued)
- - Re: SMTP Outbound Tim Fairlie (Feb 12)
- Re: SMTP Outbound Kevin Manuel (Feb 12)
- Re: SMTP Outbound Will Froning (Feb 12)
- Re: SMTP Outbound Ken Connelly (Feb 12)
  - Re: SMTP Outbound Dexter Caldwell (Feb 12)
    - Re: SMTP Outbound Dexter Caldwell (Feb 12)
    - Re: SMTP Outbound Francisco Pérez (Feb 13)
- Re: SMTP Outbound Di Fabio, Andrea (Feb 13)
  - Re: SMTP Outbound Ken Connelly (Feb 13)
    - Re: SMTP Outbound Ejike, Emechete C. (Feb 13)
  - Re: SMTP Outbound Robert Henry (Feb 13)
  - Re: SMTP Outbound Derek Diget (Feb 14)