Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 314
  • Last Modified:

Several related questions to phone to server mail sending security and syncronization

I have a customer who wants to be able to send and receive email THROUGH their firewall to their mail server (Imail 11).  

Aside from changing the default port the mail is being sent and received on, how does using SSL technology prevent hackers who stumble upon the mail server from "relaying" mail through the server if theyre able to correctly guess username and password for an account? My assumption is it doesnt.

Aside from encrypting the text so it cant be read as it passes through the Internet, what benefit does SSL provide?

The mail server software allegedly supports Activesync, but I cant make it work with any of our phones (Iphones and Androids only). How is activesync different from just allowing POP3/SMTP to the phone client?

Lastly, assuming the default ports for POP3 and SMTP (995 and 465) are used, what other ports would need to  be opened on the firewall for an SSL solution to work? for an ActiveSync solution to work? Does anyone have a good guide to either?
1 Solution
Question 1: it doesn't.  If the hackers guess the username and password, you can only use client-side certificates to stop them relaying.

Question 2: ActiveSync links directly to the mailbox, synchronising contact lists, tasks and calendar items, as well as sent items, subfolders, etc.

ActiveSync will work with iPhones, etc. easily if Exchange 2003 SP2 or later is used.

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now