Securing Internal Mail

I have a client with a 2003 SBS server, 35 Vista client all running Office 2007. They are a law firm and have asked me to to secure their internal mail. I already have a Borderware BSP doing external encryption, yet they want to secure the mail that the partners send between one another. The issue is, some of the partners have given their assistants proxy access to their mail. They want to be able to selectively exclude their assistants from reading some of the mail. They want to be able to mark a message private, so the the assistant can't read the mail. I'm not sure if this can be done. Does anyone have an experience with this issue.

thx
LVL 1
ndmtechAsked:
Who is Participating?
 
Rich RumbleConnect With a Mentor Security SamuraiCommented:
You can do it... but it's not pretty, and you can't rely on the "Private" tag to be honored. You can use Delegates in exchange, and you can control what folders the delegate can access, so if you have a rule setup on an exchange mailbox to move messages from bob.smith@attorney.com to the bob-smith folder, you can prevent the delegate from accessing that folder. You can use the rules wizard to do some very complex tasks... but if the proxy's boss, Jim we'll say, if Jim has told someone to place  *eyes only* in the subject or body so that only he can view the email, Jim can have a rule that moves the message as it arrives into a folder the proxy(delegate) is denied access to. Just make sure they are also denied access to Jim's Sent Items as well ;)
That should be able to do what they need, in essence:
http://www.tntech.edu/ITs/pubs/html/OutlookDelegate/OutlookDelegate.htm
The outlook help file states:
You should not rely on the Private feature to prevent other people from accessing the details of your appointments, contacts, or tasks. To make sure that other people cannot read the items that you marked as private, do not grant them Reviewer (can read items) permission to your Calendar, Contacts, or Tasks folder. A person who is granted Reviewer (can read items) permission to access your folders could use programmatic methods or other e-mail programs to view the details of a private item. Use the Private feature only when you share folders with people whom you trust.
-rich
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.