Educause Security Discussion mailing list archives

Re: SMTP Outbound

From: "Ejike, Emechete C." <EEjike () ODU EDU>
Date: Thu, 13 Feb 2014 20:33:31 +0000

We block outbound SMTP except for the Central IT mail gateways. All other approved distributed department mail servers 
all relay through the University mail gateways. In addition, we also enable port 25 mass mailing block filters  on our 
desktops using Mcafee antivirus agent policies.

Eme Ejike
ITS Security Operations
Old Dominion University
________________________________________
From: The EDUCAUSE Security Constituent Group Listserv [SECURITY () listserv educause edu] on behalf of Ken Connelly 
[Ken.Connelly () UNI EDU]
Sent: Thursday, February 13, 2014 9:09 AM
To: SECURITY () listserv educause edu
Subject: Re: [SECURITY] SMTP Outbound

We don't restrict outbound tcp/587.  No issues of which I am aware.

- ken

On 2/13/14, 7:46 AM, Di Fabio, Andrea wrote:


We only allow 25 in/out to/from our email servers but we do allow 587
out as we found that many email clients, especially on mobile devices,
will use this port. So the new question is, are you allowing TCP 587
out of your network without restriction and have you seen any issue
with doing that? We have not seen any issues thus far.



Andrea Di Fabio, CISO

Director, IT Security and Network

Norfolk State University

Office of Information Technology

Marie V. McDemmond Center for Applied Research, Rm 401M

555 Park Avenue, Suite 401

Norfolk, Virginia 23504

757-823-2896 Office

757-823-2128 Fax



NSU email communication is subject to permanent archival, it is
covered under the Freedom of Information Act (FOIA), and may be
partially or fully disclosed.



*From:*The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] *On Behalf Of *Robert Henry
*Sent:* Wednesday, February 12, 2014 5:35 PM
*To:* SECURITY () LISTSERV EDUCAUSE EDU
*Subject:* [SECURITY] SMTP Outbound



This is a simple, non-scientific poll, please respond off-list and I
will share the results with the list.



Do you block SMTP traffic, port 25, outbound at your border firewall?



Thanks!

--Bob


--
Robert Henry, CISSP
Chief Information Security Officer
Santa Clara University
rhenry () scu edu <mailto:rhenry () scu edu>
408-554-5554
http://www.scu.edu/is/secure


--
- Ken
=================================================================
Ken Connelly             Associate Director, Security and Systems
ITS Network Services                  University of Northern Iowa
email: Ken.Connelly () uni edu   p: (319) 273-5850 f: (319) 273-7373

Any request to divulge your UNI password via e-mail is fraudulent!

Current thread:

Re: SMTP Outbound, (continued)
- Re: SMTP Outbound Childs, Aaron (Feb 12)
  - Re: SMTP Outbound Tim Fairlie (Feb 12)
- Re: SMTP Outbound Kevin Manuel (Feb 12)
- Re: SMTP Outbound Will Froning (Feb 12)
- Re: SMTP Outbound Ken Connelly (Feb 12)
  - Re: SMTP Outbound Dexter Caldwell (Feb 12)
    - Re: SMTP Outbound Dexter Caldwell (Feb 12)
    - Re: SMTP Outbound Francisco Pérez (Feb 13)
- Re: SMTP Outbound Di Fabio, Andrea (Feb 13)
  - Re: SMTP Outbound Ken Connelly (Feb 13)
    - Re: SMTP Outbound Ejike, Emechete C. (Feb 13)
  - Re: SMTP Outbound Robert Henry (Feb 13)
  - Re: SMTP Outbound Derek Diget (Feb 14)