Solved

Securing Internal Mail

Posted on 2009-04-06
2
285 Views
Last Modified: 2012-05-06
I have a client with a 2003 SBS server, 35 Vista client all running Office 2007. They are a law firm and have asked me to to secure their internal mail. I already have a Borderware BSP doing external encryption, yet they want to secure the mail that the partners send between one another. The issue is, some of the partners have given their assistants proxy access to their mail. They want to be able to selectively exclude their assistants from reading some of the mail. They want to be able to mark a message private, so the the assistant can't read the mail. I'm not sure if this can be done. Does anyone have an experience with this issue.

thx
0
Comment
Question by:ndmtech
2 Comments
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 500 total points
ID: 24154354
You can do it... but it's not pretty, and you can't rely on the "Private" tag to be honored. You can use Delegates in exchange, and you can control what folders the delegate can access, so if you have a rule setup on an exchange mailbox to move messages from bob.smith@attorney.com to the bob-smith folder, you can prevent the delegate from accessing that folder. You can use the rules wizard to do some very complex tasks... but if the proxy's boss, Jim we'll say, if Jim has told someone to place  *eyes only* in the subject or body so that only he can view the email, Jim can have a rule that moves the message as it arrives into a folder the proxy(delegate) is denied access to. Just make sure they are also denied access to Jim's Sent Items as well ;)
That should be able to do what they need, in essence:
http://www.tntech.edu/ITs/pubs/html/OutlookDelegate/OutlookDelegate.htm
The outlook help file states:
You should not rely on the Private feature to prevent other people from accessing the details of your appointments, contacts, or tasks. To make sure that other people cannot read the items that you marked as private, do not grant them Reviewer (can read items) permission to your Calendar, Contacts, or Tasks folder. A person who is granted Reviewer (can read items) permission to access your folders could use programmatic methods or other e-mail programs to view the details of a private item. Use the Private feature only when you share folders with people whom you trust.
-rich
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Examines three attack vectors, specifically, the different types of malware used in malicious attacks, web application attacks, and finally, network based attacks.  Concludes by examining the means of securing and protecting critical systems and inf…
Each year, investment in cloud platforms grows more than 20% (https://www.immun.io/hubfs/Immunio_2016/Content/Marketing/Cloud-Security-Report-2016.pdf?submissionGuid=a8d80a00-6fee-4b85-81db-a4e28f681762) as an increasing number of companies begin to…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question