Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Protecting pop3

To: [email protected]
Subject: Re: [FW-1] Protecting pop3
From: Crist Clark <[email protected]>
Date: Tue, 18 Feb 2003 14:32:52 -0800
Organization: Globalstar Communications
References: <OF8651EFE7.AA354C17-ON85256CD1.006D8261-85256CD1.006D7FE8@corp.checkfree.com>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Tony Iannotti wrote:
>
> s/b able to do pop3 via ssl tunnel as well, I think.
>
> (Certain amount of end-user config though, to point pop client at localhost, maybe also w/IMAP, or is there an out of box app that does the client end tunneling config for it?)

Sure you can do this through an SSL tunnel. Many years ago, I set up
small company with a PC running UW IMAP, which includes a POP3
server too, and stunnel to do SSL as the server end. Most users were
using Outlook Express, and it just took clicking the SSL box and giving
the pop3s port, 995/tcp, and it all went through SSL. It all worked fine.

I should note that the idea that (SSL == better security) is not necessarily
true. Sure, now a man-in-the-middle cannot sniff user passwords and the
mail itself, but nor can an IDS in the middle watch for people attacking your
buggy (like UW IMAP is) mail daemon.
--
Crist J. Clark                               [email protected]
Globalstar CommunicationsThe information contained in this e-mail message is confidential,
intended only for the use of the individual or entity named above.
If the reader of this e-mail is not the intended recipient, or the
employee or agent responsible to deliver it to the intended recipient,
you are hereby notified that any review, dissemination, distribution or
copying of this communication is strictly prohibited.  If you have
received this e-mail in error, please contact [email protected]

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

References:
- Re: [FW-1] Protecting pop3
  - From: Tony Iannotti <[email protected]>

Prev by Date: Re: [FW-1] PPTP Tunnel through Hide Nat
Next by Date: [FW-1] SecurePlatform memory
Previous by thread: Re: [FW-1] Protecting pop3
Next by thread: [FW-1] Problem after upgrading 4.1 to NG FP3
Index(es):
- Date
- Thread