• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 196
  • Last Modified:

How safe is it to have a hole in your firewall to the exchange OWA?

I have users that need to access our new Exchange server 2003 web interface.

How safe is it to open our firewall to port 80 and nat it to our exchange server?

2 Solutions
Hypercat (Deb)Commented:
It's only as safe as your user passwords.  Which, if your users are anything like mine, is about as safe as a kitten in a roomful of coyotes.  The recommended configuration would be to get an SSL certificate and secure the site with that.  This would provide encryption of both the passwords being sent for authentication and the actual data transfer.
Port 80 is about as safe as having an unlocked front door. Fine until someone finds it.

I do not open port 80 on any sites that I deploy. Port 443 ONLY using a commercial SSL certificate. Then as already pointed out above, it comes down to use security - which is the usual weak point.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now