Solved

Auditing logins / reading of emails

Posted on 2007-11-16
5
192 Views
Last Modified: 2013-12-07
Is there a way to see how many times a specific email is opened and read and by which user?
Specifically worried about who someone accessing another user accounts password and logging as them.  
0
Comment
Question by:isc037
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 58

Accepted Solution

by:
tigermatt earned 500 total points
ID: 20300619
You can't audit the number of times an individual email was accessed. If you could, then you would just end up with thousands of audit entries in your event logs every time any system user accesses an email, which is obviously going to fill up the logs very quickly.

You need to talk to your manager about this issue. You should have policies in place for computer and information misuse. The accessing of any user account when not authorised to do so could put the entire business under threat, particularly if that particular user account has access to sensitive documents, i.e. financial or employee information. At the very least, force the user of the user account whose password has been breached to change the password immediately, and implement password policies to use complexity requirements and to force a password change every 90 days or something. I would also educate users in not writing passwords down etc.

-tigermatt
0
 

Author Comment

by:isc037
ID: 20300635
Thanks have it in place.... need to prove it.
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 20300973
>>> Thanks have it in place.... need to prove it.
I assume you're talking about the password policies? If so, then you may also want to force the user to change their password this once by checking the "User must change password at next logon" checkbox in their AD account properties. That will force them to change their password and will get them onto the password policy you have defined. Also make sure "Password does not expire" is NOT checked, otherwise your policy won't work.

Other users will follow suit in due course.

-tigermatt
0
 
LVL 1

Expert Comment

by:Computer101
ID: 20526460
Forced accept.

Computer101
EE Admin
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Getting to know the threat landscape in which DDoS has evolved, and making the right choice to get ourselves geared up to defend against  DDoS attacks effectively. Get the necessary preparation works done and focus on Doing the First Things Right.
Article by: Justin
In light of the WannaCry ransomware attack that affected millions of Windows machines, you might wonder if your Mac needs protecting. Yes, it does and here is how to do it.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question