Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Securing Email

from [Deanosaur] Network Security [Permanent Link]
Subject: Re: Securing Email
Date: Wed, 26 Dec 2007 23:59:28 +1100
If you are using Exchange, native Outlook can perform secure email sign and encrypt easily. Why not use that instead of a 3rd party product.


----- Original Message ----- From: "Jonathan Smith" <smithj@freethemallocs.com>
To: <security-basics@securityfocus.com>
Cc: "JD Brown" <jd.brown@smallenoughtocare.com>
Sent: Saturday, December 22, 2007 7:55 AM
Subject: Re: Securing Email


On Friday 21 December 2007 14:52, JD Brown wrote: 
Hi list, I would like to get some suggestions regarding products out
there to secure email.  Preferably, I'd like to see an appliance that
could make the process as transparent as possible to the user.  Any
input would be greatly appreciated.


Secure against... what? There's only so much you can do to secure email
without greatly affecting your users, but I'll list a few suggestions.

* Configure SMTP mail servers to use TLS. for clients which use tls (most do
these days) this makes MITM impossible for mail in-transit
* configure pop/imap to use SSL/TLS. this prevents MITMs for mail being
downloaded by end-users
* use SpamAssassin for spam filtering. you can pretty easily set up a script
to run over a folder called "Junk" to learn junk mail and tell users to just
put junk in that folder instead of deleting it
* ClamAV for anti-virus. its free, high quality, and did I mention free?

smithj


[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: OT: IP of the originating machine from a gmail email, Nikhil Wagholikar
Next by Date:  RE: RDP sniffing, krymson
Previous by Thread:  Re: Securing Email, Jonathan Smith
Next by Thread:  Re: Securing Email, jam
Indexes:  [Date] [Thread] [Top] [All Lists]