Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 2964 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Server side SMTP blocking

Brynn

Hi Everyone,

I am currently in the process of trailing Sophos Endpoint secuity for our company. So far, it has excedeed my expectations. Just one point of interest i thought i would engage you on and get your opinions.

We have been for years, using McAfee, which has the capability to block outgoing SMTP (port 25) connections. Sophos Client Firewall has this option which has been tried and works great. However, we also have been blocking SMTP on our server systems, with the exception of select processes. Sophos does not provide a server side firewall to do this.

Wondering if anyone else sees the point to continuing blocking this. Or if anyone else is doign this, how is this being accomplished?

:15629


This thread was automatically locked due to age.
Parents
  • 0

    I would agree that HIPS would catch the threat but in a new installation it is not recommended to turn on blocking but rather detect and report only.  The reason for this is to build your authorization list without impacting the end users.  I'll look at the Windows Firewall suggestion, but at the end of the day, I still think it is better to block attempts at the source rather than at the endpoint of a threat.

    :27085
Reply
  • 0

    I would agree that HIPS would catch the threat but in a new installation it is not recommended to turn on blocking but rather detect and report only.  The reason for this is to build your authorization list without impacting the end users.  I'll look at the Windows Firewall suggestion, but at the end of the day, I still think it is better to block attempts at the source rather than at the endpoint of a threat.

    :27085
Children
No Data