OWA CITRIX SECURITY

TheMSsForum.com: The Microsoft Software Forum

Hi there,

We have a sytem with one domain and two sites.These 2 sites are connected to
internet and eachother through a firewall located in somewhereelse. We are
now considering remote acces to exchange server.We have 2 considiretaions.
0ne of them is owa, the other one is Citrix. Which one should I prefer and is
more secure?
Thanks
--
Top

Re: OWA CITRIX SECURITY by Phillip

Phillip
Fri Apr 29 08:55:45 CDT 2005

Citrix allow the user to have access to everything on the Host machine they
connect to, not just the mail client.

OWA is just a glorified website,...it only does what it is designed to do.

--

Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com


"Admini Firat" <AdminiFirat@discussions.microsoft.com> wrote in message
news:6C81F7EE-29B7-4404-AED7-23619108ADB7@microsoft.com...
> Hi there,
>
> We have a sytem with one domain and two sites.These 2 sites are connected
to
> internet and eachother through a firewall located in somewhereelse. We are
> now considering remote acces to exchange server.We have 2 considiretaions.
> 0ne of them is owa, the other one is Citrix. Which one should I prefer and
is
> more secure?
> Thanks
> --
>


Top

Re: OWA CITRIX SECURITY by AdminiFirat

AdminiFirat
Fri Apr 29 09:10:03 CDT 2005

But if you put frontend server in the dmz, because it is a member of domain,
directory service might be in danger and accessible
--
Network Administrator


"Phillip Windell" wrote:

> Citrix allow the user to have access to everything on the Host machine they
> connect to, not just the mail client.
>
> OWA is just a glorified website,...it only does what it is designed to do.
>
> --
>
> Phillip Windell [MCP, MVP, CCNA]
> www.wandtv.com
>
>
> "Admini Firat" <AdminiFirat@discussions.microsoft.com> wrote in message
> news:6C81F7EE-29B7-4404-AED7-23619108ADB7@microsoft.com...
> > Hi there,
> >
> > We have a sytem with one domain and two sites.These 2 sites are connected
> to
> > internet and eachother through a firewall located in somewhereelse. We are
> > now considering remote acces to exchange server.We have 2 considiretaions.
> > 0ne of them is owa, the other one is Citrix. Which one should I prefer and
> is
> > more secure?
> > Thanks
> > --
> >
>
>
>
Top

Re: OWA CITRIX SECURITY by Phillip

Phillip
Fri Apr 29 11:58:14 CDT 2005

You'r not supposed to put domain Members in the DMZ. Even if you had a
Domain Member in the DMZ (which is very difficult to do) then that does not
mean AD is in danger unless the machine was a Domain Controller, and putting
a DC in the DMZ the rediculas,...of course so it putting a member server in
the DMZ for that matter.

Do people still do it? Yes they do. There are a lot of things that can be
done but should never be done, and people still do it anyway.

--

Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com


"Admini Firat" <AdminiFirat@discussions.microsoft.com> wrote in message
news:6890D8E4-0B32-4F03-A406-7C1AFB0ECB7A@microsoft.com...
> But if you put frontend server in the dmz, because it is a member of
domain,
> directory service might be in danger and accessible
> --
> Network Administrator
>
>
> "Phillip Windell" wrote:
>
> > Citrix allow the user to have access to everything on the Host machine
they
> > connect to, not just the mail client.
> >
> > OWA is just a glorified website,...it only does what it is designed to
do.
> >
> > --
> >
> > Phillip Windell [MCP, MVP, CCNA]
> > www.wandtv.com
> >
> >
> > "Admini Firat" <AdminiFirat@discussions.microsoft.com> wrote in message
> > news:6C81F7EE-29B7-4404-AED7-23619108ADB7@microsoft.com...
> > > Hi there,
> > >
> > > We have a sytem with one domain and two sites.These 2 sites are
connected
> > to
> > > internet and eachother through a firewall located in somewhereelse. We
are
> > > now considering remote acces to exchange server.We have 2
considiretaions.
> > > 0ne of them is owa, the other one is Citrix. Which one should I prefer
and
> > is
> > > more secure?
> > > Thanks
> > > --
> > >
> >
> >
> >


Top

Re: OWA CITRIX SECURITY by AdminiFirat

AdminiFirat
Mon May 02 00:34:02 CDT 2005

Where I am suppose to put front end server then? Frontend server will ask
where the backends are to active directory, therefore if frontend server can
be hacked, it means all the active directory can be hacked.That is why it
seems scary.Am I wrong?
Thanks

Network Administrator


"Phillip Windell" wrote:

> You'r not supposed to put domain Members in the DMZ. Even if you had a
> Domain Member in the DMZ (which is very difficult to do) then that does not
> mean AD is in danger unless the machine was a Domain Controller, and putting
> a DC in the DMZ the rediculas,...of course so it putting a member server in
> the DMZ for that matter.
>
> Do people still do it? Yes they do. There are a lot of things that can be
> done but should never be done, and people still do it anyway.
>
> --
>
> Phillip Windell [MCP, MVP, CCNA]
> www.wandtv.com
>
>
> "Admini Firat" <AdminiFirat@discussions.microsoft.com> wrote in message
> news:6890D8E4-0B32-4F03-A406-7C1AFB0ECB7A@microsoft.com...
> > But if you put frontend server in the dmz, because it is a member of
> domain,
> > directory service might be in danger and accessible
> > --
> > Network Administrator
> >
> >
> > "Phillip Windell" wrote:
> >
> > > Citrix allow the user to have access to everything on the Host machine
> they
> > > connect to, not just the mail client.
> > >
> > > OWA is just a glorified website,...it only does what it is designed to
> do.
> > >
> > > --
> > >
> > > Phillip Windell [MCP, MVP, CCNA]
> > > www.wandtv.com
> > >
> > >
> > > "Admini Firat" <AdminiFirat@discussions.microsoft.com> wrote in message
> > > news:6C81F7EE-29B7-4404-AED7-23619108ADB7@microsoft.com...
> > > > Hi there,
> > > >
> > > > We have a sytem with one domain and two sites.These 2 sites are
> connected
> > > to
> > > > internet and eachother through a firewall located in somewhereelse. We
> are
> > > > now considering remote acces to exchange server.We have 2
> considiretaions.
> > > > 0ne of them is owa, the other one is Citrix. Which one should I prefer
> and
> > > is
> > > > more secure?
> > > > Thanks
> > > > --
> > > >
> > >
> > >
> > >
>
>
>
Top

Re: OWA CITRIX SECURITY by Phillip

Phillip
Mon May 02 08:57:45 CDT 2005

"Admini Firat" <AdminiFirat@discussions.microsoft.com> wrote in message
news:71D071B6-BFBB-4658-9B6C-B2C042A1DAD3@microsoft.com...
> Where I am suppose to put front end server then? Frontend server will ask
> where the backends are to active directory, therefore if frontend server
can
> be hacked, it means all the active directory can be hacked.That is why it
> seems scary.Am I wrong?

I am not sure of all the requirements of a frontend-backend Exchange to make
them communicate. I can say that I personally have no intrest in ever doing
that type of Exchange setup. I think Byron has an excellent option for you.
Why pay for 2 Exchange Servers when the job can securely be done with just
one.

--

Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com


Top