Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: MS Exchange

from [Steveb] Network Security [Permanent Link]
Subject: RE: MS Exchange
Date: Fri, 28 Jul 2006 16:32:24 -0400 
It's impossible to hold up in court because the third party can just
forward the entire email with the exception of those disclaimer lines
and whose to say that those lines where ever on the email that the third
party intercepted? ASCII text can be erased as easily as it can be
typed.

The bottom line is that if you want an email to be private, then encrypt
it.  If you want to ensure authenticity remains (disclaimer and all),
then digitally sign it.

If you just put some ASCII meaningless blurb at the bottom of your
emails, it just makes you look like a person who acts before fully
thinking things through.  THAT is information that you would rather keep
to yourself. =)

Steve Bostedor

-----Original Message-----
From: Jeffrey Wei [mailto:jeffrey.wei@cubic.com] 
Sent: Friday, July 28, 2006 1:37 PM
To: focus-ms@securityfocus.com
Subject: RE: MS Exchange

Can someone explain to me how a disclaimer at the bottom of an email can
do anything, legally?  Was there a case study where the disclaimer
worked in the court of law???  

Let's take a lawyer communication for example.  We all know that there
is privilege communication for lawyers and I fail to see how putting a
disclaimer or some stupid legal blurb at the end of an email would stop
the third party from disseminating information that he/she accidentally
intercepts?

Jeff

-----Original Message-----
From: Tupker, Mike [mailto:mtupker@mtmercy.edu]
Sent: Friday, July 28, 2006 6:52 AM
To: dave kleiman; focus-ms@securityfocus.com
Subject: RE: MS Exchange

I've been looking into this a little as well. The cheapest way to do it
that I've found, if you are using exchange, is with an SMTP event sink.
Many spam filters that I've seen have the ability to append text to
emails as well. The only one that I can think of off hand is GFI Mail
Essentials. http://gfi.com/mes/

I'm not sure if these would allow you to pull info from AD though. I
hope this helps a little.


Mike Tupker

-----Original Message-----
From: dave kleiman [mailto:dave@davekleiman.com]
Sent: Thursday, July 27, 2006 4:48 PM
To: focus-ms@securityfocus.com
Subject: MS Exchange


Can anyone recommend a auto-signature application that adds signatures
to
outgoing email and those annoying legal disclaimers?

It needs to black the user from making changes to the sig / disclaimer. 

Additionally, it needs to pull variables from AD (e.g. Organization,
Title,
Department)

Most important, it needs to work! I have tried a couple and they crashed
and
burned, either the sig did not pull AD info properly or the user could
override it.


Respectfully,

Dave Kleiman


------------------------------------------------------------------------
---
------------------------------------------------------------------------
---


------------------------------------------------------------------------
---
------------------------------------------------------------------------
---

---
[This E-mail scanned for Spam and Viruses by
http://www.innovationnetworks.ca]


------------------------------------------------------------------------
---
------------------------------------------------------------------------
---



---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: MS Exchange, Thor (Hammer of God)
Next by Date:  RE: Impact of removing administrative rights in an enterprise running XP, Stephen Hefner
Previous by Thread:  RE: MS Exchange, Devin Ganger
Next by Thread:  RE: MS Exchange, Jason Wieland
Indexes:  [Date] [Thread] [Top] [All Lists]