Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Secure SMTP setup/ISA 2004

from [Stephane Auger] Network Security [Permanent Link]
Subject: RE: Secure SMTP setup/ISA 2004
Date: Tue, 26 Oct 2004 11:19:06 -0400 
There's a strong risk there.  If your SMTP gets compromised, ISA is
compromised and vice-versa.  A good setup is having an ISA, with another
server acting as an SMTP gateway (Mdaemon is pretty good for that), thus
relaying your inbound and outbound mail to/from your Exchange.


Stephane Auger

-----Original Message-----
From: Dan Tesch [mailto:dan.tesch@comcast.net]
Sent: October 23, 2004 12:14 PM
To: security-basics@securityfocus.com
Subject: Secure SMTP setup/ISA 2004

I have installed a new 2003 Server with Exchange 2003 and while planning
the deployment I started reading and thinking about not opening my
firewall to the Ex server and putting an SMTP server in my DMZ.

I have a test 2003 Srvr. with ISA on it and I have the
2003 SMTP service running - the 2003/ISA box will receive mail from the
internet and the Ex Srvr will pull mail from ISA.

My question is this- is this a good way to go about it with the SMTP
service running on the ISA server?
How likely might this be to be compromised? and being that the ISA
server with SMTP running on it touches my LAN would it be better to have
ISA or another firewall as the border and a separate box for SMTP?
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Electronic signatures and watermarking?, Spencer, Mark
Next by Date:  RE: 0.0.0.0 Probes, Fook Ming EE
Previous by Thread:  Re: Secure SMTP setup/ISA 2004, xyberpix
Next by Thread:  Searching for Canadian IT Security agencies...., marcus peddle
Indexes:  [Date] [Thread] [Top] [All Lists]