Checkpoint or other Solution required

Does anyone*have a clue on a checkpoint product that can act as an Security policy enforcer ?
Assuming that I need to ensure that all incoming emails contain only certain contents, any bthother comntent would make the email be dropped. I have seen Posini. IS there any other out there ?
Cheers

2008-07-12 Taiwo Adekoya wrote:
Does anyone*have a clue on a checkpoint product that can act as an
Security policy enforcer ? Assuming that I need to ensure that all
incoming emails contain only certain contents, any bthother comntent
would make the email be dropped. I have seen Posini. IS there any
other out there ? Cheers

Postfix, Exim, qmail, sendmail, Almost every mail server out there
is capable of doing this.

And you want to reject (not bounce!) the mail instead of dropping it,
otherwise you might get into legal trouble (depending on your country's
jurisdiction).

Regards
Ansgar Wiechers
--
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
Coombs on Bugtraq

PGP SIGNED MESSAGE
Hash: SHA1

Ansgar -59cobalt- Wiechers wrote:
And you want to reject (not bounce!) the mail instead of dropping it,
otherwise you might get into legal trouble (depending on your country's
jurisdiction).

Can you please clarify on your comment above? How could that land you
in legal trouble?


Regards
Ansgar Wiechers


- --
Rob


| _ |
| ASCII ribbon campaign ( ) |
| - against HTML email X |
| / \ |
| |

PGP SIGNATURE
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Ignorance is bliss



=J3yx
PGP SIGNATURE

2008-07-12 Rob Thompson wrote:
Ansgar -59cobalt- Wiechers wrote:
>And you want to reject (not bounce!) the mail instead of dropping it,
>otherwise you might get into legal trouble (depending on your country's
>jurisdiction).

Can you please clarify on your comment above? How could that land you
in legal trouble?

In Germany for instance you could be violating § 206 (2) StGB (German
criminal law) by dropping a message directed at one of the company's
employees, e.g. in a situation where employees are allowed to use their
e-mail account privately and haven't given express permission to drop
particular messages (e.g. spam). To avoid legal issues you either just
tag incoming messages and leave it to the user to deal with them, or you
reject the message in the SMTP dialog to inform the sender that his
message was not accepted.

Regards
Ansgar Wiechers
--
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
Coombs on Bugtraq

You can check e-mail content using smtp-resources, but this is not a
solution for inspecting a large volume of messages, your FW will be
overloaded for sure.You can check email content usin an IPS such as ISS
P, snort_inline, tipping point, an antispam sucha as barracuda
spam firewall or just directlly in your smtp server using postifx
spamassessing What type of content are you triyin to search? an
specific with just some regex or SPAM?


Javier Reyna

Taiwo Adekoya wrote:
Does anyone have a clue on a checkpoint product that can act as an Security policy enforcer ?
Assuming that I need to ensure that all incoming emails contain only certain contents, any bthother comntent would make the email be dropped. I have seen Posini. IS there any other out there ?
Cheers
>
>