S
Mon Mar 01 05:06:05 CST 2004
I don't necessarily agree that OWA will be more secure than IMAP/LDAP
solution. However, if the server infrastructure is properly secured, why not
to have both for more flexibility?
I'd recommend securing IMAP and LDAP traffic with SSL for confidentiality
and integrity.
Some additional resources:
Security Resources for Exchange Server 2003 -
http://www.microsoft.com/exchange/techinfo/security/default.asp
NSA Guide to Secure Configuration and Administration of Microsoft Exchange
2000 -
http://www.nsa.gov/snac/downloads_apps.cfm?MenuID=scg10.3.1
Configuration and Security Update Recommendations for Exchange 2000 -
http://www.microsoft.com/exchange/techinfo/security/bestconfig.asp
--
Svyatoslav Pidgorny, MVP, MCSE
-= F1 is the key =-
"Markus Bauer" <markus.bauer.ng@gmx.net> wrote in message
news:OTl$OQ2$DHA.1700@TK2MSFTNGP12.phx.gbl...
> Barry wrote:
> > Hello,
> > First, the scenario: 150 external sites (actaully shops) on ADSL (512k),
> > collecting their email to an exchange FE server in the dmz, using IMAP.
Now,
> > what I want is some sort of centralised email address list for these
stores.
> > Was thinking about using ldap and pointing it at one of our GCs. Are
there
> > any secutiy issues I should be aware of...? Im sure there are in fact,
> > anyone care to gimme a hand?
> >
> > For info, they're windows 98 (yay)
> > running OE 5 (yay)
> >
> > Failing everything, should I just forget the imap / ldap route and just
make
> > them use OWA?
> >
> > Cheers,
> > Barry
> >
> >
>
> IMHO I would go for OWA.
> It´s easier to maintain, backup and secure.
>
> It tried to figure out the steps to be taken for your
> prefered solution, but this seems to me way to complicated
> to get it real secure. Just think about if one OE5 isn´t
> patched and a virus could gain control over your centralized
> mailing address list. Brrrrrrr ;-)
>
> HTH
>
> Markus
>