<div>
Hi Ve3ofa,<br />
<br />
thanks for your reply, Anyhow LDAP query need to provide logon name and password, even through anybody perform port scan.<br />
<br />
Thanks<br />
Thomas
</div>


Hi Ve3ofa,

thanks for your reply, Anyhow LDAP query need to provide logon name and password, even through anybody perform port scan.

Thanks
Thomas

<div>
What are they trying to log on to? You can limit the ldap queries to be only from the local network.
</div>


What are they trying to log on to? You can limit the ldap queries to be only from the local network.

<div>
<div class="content wysiwyg-content">
Hi all,<br />
<br />
If I opened an LDAP port on our firewall for LDAP enquiry for our Mac clients, could anybody get our LDAP list through port scan from Internet? our staff got many fake spams recently in which the recipient addresses were exist on our Exchange Server. Does this problem related to I open the LDAP port to Internet?<br />
<br />
I have disable the LDAP port now. Do I take any actions now?<br />
<br />
Thanks<br />
Thomas
</div>
</div>


Hi all,

If I opened an LDAP port on our firewall for LDAP enquiry for our Mac clients, could anybody get our LDAP list through port scan from Internet? our staff got many fake spams recently in which the recipient addresses were exist on our Exchange Server. Does this problem related to I open the LDAP port to Internet?

I have disable the LDAP port now. Do I take any actions now?

Thanks
Thomas

Publish LDAP to Internet

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.

AntiSpam

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.