Mark
Sun Jul 20 07:46:50 CDT 2003
Javier,
That is my point....you DON'T allow relay or open ports 25&110. If you
have a pro host getting your mail and all your ports are closed but you use
Popbeamer to pull your mail from the host every 5 minutes then you have the
security of not opening Exchange to the world, more reliability, and the
burden of upkeep on them. Many large companies (enterprise) use Unix smart
hosts in front of their firewall and then forward them to their Excahnge
boxes securely. Companies (smaller ones) that do business with Asia often
purchase something like an esoft appliance that does the same thing for
under $1000 and is a Linux based appliance. My clients use my pro hosting
services which is a CPanel box located in a well known datacenter. Since
I've done this I have NEVER had a lost email, Exchange security concern, or
worry. The client gets great web stats and the ability to control their own
DNS zone so we usually use remote.domain.com to their static IP for TS as
well as a safe haven for FTP if needed. With other scripts like Fantastico
they get shopping carts, forums, web calendars, etc...
People here fight me instead of giving it a shot with a couple clients
and see for themselves. Some others here also do this but aren't as adamant
as I am. I think all consultants should maintain and resell hosting space
with a CPanel server and have clients POP for their mail than to try and be
the only mailserver in a manner that SBS is really not suited for if you
want high reliability/availability. Some people use secondary MX records to
their ISP for when their server is down and this isn't a bad idea BUT since
you need to get web hosting anyway, why not outsource the mail too?
My clients are accountants, lawyers, doctors and other professionals
that just cannot be down. 1 Exchange box on a DSL or T1 line has too much
room for error and if you ask others that do this practice you will see that
their admin time on servers is a LOT lower than others. My 2 cents but hey
I've only bee doing this 20 years.
--
Sincerely,
Mark Mancini, CCA, CCNA, Master CIW&CI, CNE 4&5, MCSE+I 4&2000
www.MCSE2000.com
www.AppLauncher.com
"Javier Gomez" <javier_gomez@remove-this-bit.engineer.com> wrote in message
news:eJum0XnTDHA.2324@TK2MSFTNGP12.phx.gbl...
> Mark,
>
> Could you explain to me your reasoning? For this particular issue?
>
> As I see it... even if you outsource your e-mail you can still be caught
on
> this. If you allow to relay mail tru your server... it won't matter that
you
> were using POP3 or SMTP to receive mail. Or I'm wrong?
>
> -Javier
>
> "Susan Bradley, CPA aka Ebitz SBS Rocks [MVP]" <sbradcpa@pacbell.net>
wrote
> in message news:3F19FFAB.8E452467@pacbell.net...
> > And a large external ISP also got caught doing this. We're all in the
> same
> > boat. Sorry... I've seen POP connector fall over too many times with
junk
> and
> > malformed emails.
> >
> > Mark Mancini wrote:
> >
> > > Even more reason why sub 50 user networks should have their email
> > > professionally hosted and POP out for their mail. Sorry, but I've
been
> > > enterprise and SMB does NOT have the budget to do in-house correctly.
> > >
> > > --
> > > Sincerely,
> > > Mark Mancini, CCA, CCNA, Master CIW&CI, CNE 4&5, MCSE+I 4&2000
> > > www.MCSE2000.com
> > > www.AppLauncher.com
> > >
> > > "Wayne Small [SBS MVP]" <wayne@correct.com.au> wrote in message
> > > news:u6q2htcTDHA.2280@TK2MSFTNGP12.phx.gbl...
> > > > Hi all,
> > > >
> > > > I've been investigating this week how one of my customers was used
as
> a
> > > spam
> > > > relay host - even though they are not an open relay host. It's a
> detailed
> > > > issue and according to a number of other sources is a new method the
> > > > spammers are using to "sell their products". I've written up an
> article
> > > > (rather than post something too long here) and posted it on
> www.sbsfaq.com
> > > > if your interested.
> > > >
> > > > I'd be interested to hear feedback on the people who have seen this
> > > attack.
> > > >
> > > > Regards,
> > > > Wayne Small [SBS-MVP]
> > > > MCSE+I MCSE 2000
> > > > Technical Director - Correct Solutions Pty Ltd
> > > > For all the answers on Small Business Server 2000 - check out
> > > www.sbsfaq.com
> > > >
> > > >
> >
> > --
> > "Don't lose sight of security. Security is a state of being, not a
> > state of budget. He with the most firewalls still does not win.
> > Put down that honeypot and keep up to date on your patches. Demand
> > better security from vendors and hold them responsible. Use what
> > you have, and make sure you know how to use it properly and
effectively."
> > ~ Rain Forest Puppy
> >
> >
http://www.wiretrip.net/rfp/txt/evolution.txt
> >
> >
>
>