Re: Security issues with IMAP?
From: Al Mulnick (amulnick_No_SPAM_at_ncDOTrr.com)
Date: 11/04/04
- Next message: Fausto Sakamoto: "RE: Open relay on Exchange Server 2000 / Windows 2000 Server"
- Previous message: Al Mulnick: "Re: GAL replication"
- In reply to: Jeff Johnson [MVP: VB]: "Re: Security issues with IMAP?"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 3 Nov 2004 21:49:06 -0500
That's the equivalent of locking the windows, leaving the front door open
and a plate of milk and cookies for whomever happens by.
IMAP and POP are HIGHLY similar protocols in that sense. IMAP is often
viewed as the successor of POP.
There is no more risk in making IMAP available as there is in making POP
available as far as I'm concerned. Folders and rules would be availble to
the IMAP user, but the risks are not the types of data they can see, but
rather the protocol itself and the clear-text passwords etc (my opinion of
course).
Al
"Jeff Johnson [MVP: VB]" <i.get@enough.spam> wrote in message
news:ev1pZKPwEHA.2540@TK2MSFTNGP09.phx.gbl...
>
> "Jeff Johnson [MVP: VB]" <i.get@enough.spam> wrote in message
> news:en5oB0IwEHA.4048@TK2MSFTNGP15.phx.gbl...
>
>> Can anyone provide me with links to articles (Web, NNTP, whatever)
>> dealing with the security implications of IMAP? Is it secure? Is it
>> securable? Is the reluctance to open the port(s) just uneducated
>> paranoia? I want to have some firepower behind me the next time I go to
>> bat for this wonderful little protocol.
>
> Let me expound: moving to Exchange 2003 is not an option at the moment.
> Also, we have POP3 open on the server. If that's the security equivalent
> of locking the windows but leaving the front door wide open, let me know.
>
- Next message: Fausto Sakamoto: "RE: Open relay on Exchange Server 2000 / Windows 2000 Server"
- Previous message: Al Mulnick: "Re: GAL replication"
- In reply to: Jeff Johnson [MVP: VB]: "Re: Security issues with IMAP?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
