Security Basics mailing list archives
Re: Monitoring emails.
From: Matthew Finkel <matthew.finkel () gmail com>
Date: Tue, 21 Jun 2011 00:52:02 -0400
On 06/12/11 11:27, peterodigie () gmail com wrote:
Hi all! I am seeking for ideas. A firm will want to monitor the emails of its staff, knowing all the mails that pass through its domain. They have a domain with email accounts registered and hosted by an independent body. Staff access their email account within and outside the internal network (using their Blackberry and other networks). Part of the issue at hand is how can you affirm that a particular mail got to another staff. Some staff affirm that they have sent a mail to another staff and while that other staff denies it. One option is for them to speak with the domain registrar and set up a monitoring account but they want something in house - within their internal network. A system that collects all the mails that pass through their domain; the system does not has to be always on. F1!!!!! Thanks. Peter ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 -----------------------------------------------------------------------
Given your situation, I'm not sure there is an easy situation. If all email is originating from an office then the suggested solutions using snort (and similar) should work. However, from what it sounds like (correct me if I'm wrong) you're looking at capturing data from both internal computers and from mobile devices which would most likely never touch your network and thus those packets would never touch the packet sniffer. As far as I know, unless you host the mail server internally, there's not an accurate way for you to monitor all email traffic, unless you retrieve the server logs from the hosting company, which you can then parse on your own. - Matt ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Re: Monitoring emails., (continued)
- Re: Monitoring emails. Mark (Jun 13)
- Re: Monitoring emails. Mike Hale (Jun 13)
- Message not available
- Re: Monitoring emails. Peter Odigie (Jun 13)
- Re: Monitoring emails. gold flake (Jun 14)
- RE: Monitoring emails. Mikhail A. Utin (Jun 14)
- Re: Monitoring emails. Sebastien Mahieux (Jun 14)
- Re: Monitoring emails. Peter Odigie (Jun 18)
- Re: Monitoring emails. Peter Odigie (Jun 13)
- Re: Monitoring emails. Mark (Jun 13)
- Re: Monitoring emails. Peter Odigie (Jun 13)
- Re: Monitoring emails. Matthew Finkel (Jun 25)