[Esa-l] Anyone have a comprehensive webmail URI list?

John D. Hardin jhardin at impsec.org
Thu Aug 23 06:56:22 PDT 2001

On Thu, 23 Aug 2001 Karl.Dunn at vmic.com wrote:

> You will probably have to block https too, at least for all sites
> except for a chosen few with which you do e-business.  If you
> don't, lusers can use redirectors like SafeWeb to download/upload
> stuff anyway.  Ours do, and I have been directed not to block
> https at all. 

Can you swing a policy commitment from the upper management that says
anyone (including said upper management) who brings in an infected
attachment via webmail pays your cleanup costs?

 John Hardin KA7OHZ   ICQ#15735746   http://www.wolfenet.com/~jhardin/
 jhardin at impsec.org        pgpk -a finger://gonzo.wolfenet.com/jhardin
  768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76 
 1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
  In 1998 more than three times as many people in the US were killed
  by incompetent physicians than were killed by handguns, yet the
  President of the A.M.A. is adopting "gun safety" as his platform.
   1167 days until the Presidential Election

More information about the esd-l mailing list