Re: Transparent email proxy
- From: "Heiko Wundram (Beenic)" <wundram@xxxxxxxxxx>
- Date: Fri, 13 Jul 2007 09:57:25 +0200
On Friday 13 July 2007 09:30:06 Olivier Nicole wrote:
As an ISP, or the person in charge of a large organisation, have you
ever set-up a transparent email redirection: all outgoing email would
be proceeded to an outgoing server in order to check for virus, spam,
whatever.
Don't do this transparently. Only leads to pain and suffering (and
sufficiently high client disappointment), especially if you want to support
TLS over SMTP (which either means a failed certificate for the sending host
in case you proxy fully), or not check-/controllable by you (in case you pass
encrypted SMTP on directly).
Easiest solution that worked for me: block all outgoing traffic to ports 25
and 465, and tell your clients to use <yoursmtphost> as their smarthost,
which then accepts the mail, scans it, and sends it on properly. This works
fine for a university of 8000 computers. ;-)
--
Heiko Wundram
Product & Application Development
-------------------------------------
Office Germany - EXPO PARK HANNOVER
Beenic Networks GmbH
Mailänder Straße 2
30539 Hannover
Fon +49 511 / 590 935 - 15
Fax +49 511 / 590 935 - 29
Mail wundram@xxxxxxxxxx
Beenic Networks GmbH
-------------------------------------
Sitz der Gesellschaft: Hannover
Geschäftsführer: Jorge Delgado
Registernummer: HRB 61869
Registergericht: Amtsgericht Hannover
_______________________________________________
freebsd-questions@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@xxxxxxxxxxx"
- References:
- Transparent email proxy
- From: Olivier Nicole
- Transparent email proxy
- Prev by Date: Openbox/GTK 2.x
- Next by Date: Re: I've got a question for you guys (unsubscibing)
- Previous by thread: Transparent email proxy
- Next by thread: Re: Transparent email proxy
- Index(es):
