[freeside] Anyone implemented NT servers?

Jeff Finucane jeff at cmh.net
Fri Aug 3 09:23:19 PDT 2001


"Curtis Maurand" <curtis at canon.maurand.com> wrote on Fri, 3 Aug 2001 07:06:01 -0400:

+----------
| Message-ID: <000e01c11c0c$4848cb40$0fdd583f at maurand.com>
| References: <2935820018532594170 at lock-net.com> <20010802212055.C9279 at cleanwhisker.420.am> <03b301c11bd5$be057fe0$0fdd583f at maurand.com> <20010803003250.G9279 at cleanwhisker.420.am>
| 
| Sure its not very cool, but it works.   And your billing system should be
| behind a firewall anyway.  If youir billing system is on a public network
| accessible by all, then you need to rethink security.  You can still have
| public self help on another machine outside the firewall.  You can also
| encrypt the information before you move it and you wouldn't be moving credit
| card or billing information, just username, password and domain.
+----------

  The problem, as I see it, is that the original question concerned 
moving configuration information to a *public* mail server.  Yes,
you can provide end-to-end encryption for the moved data (a good idea),
but you still run the risk of a snooper capturing the administration
authentication material.  FTP is not secure.

  Everyone's security requirements differ somewhat, so YMMV.

  Jeff

-- 
jeff at cmh.net

"There is no worse tyranny than to force a man to pay for what he does
 not want merely because you think it would be good for him." 

 Professor Bernardo de le Paz
  [ R.A. Heinlein -- "The Moon is a Harsh Mistress" ]




More information about the freeside-users mailing list