Slide 1Topics to CoverProblem summaryCurrent method used to combat spam: Pros and ConsProposed methodsBarracudaOutsourced SolutionsChoice criteriaComparisonComparisonComparisonThe SolutionSpamstopshereProblems addressedChallengesResolutionQUESTIONS/CLOSINGF R O MR I C H A R D R O D R I G U E SJ O H N A N I M A L UF E L I X S H U L M A NT H E H O N O R A R Y M E M B E R S O F T H E I N T E R C O N T I N E N TA L G R O U PInformation security in real businessfirewall security with special emphasis on smtpTopics to CoverProblem summaryCurrent methods to combat spam: Pros and ConsProposed methodsBarracuda & Outsourced solutionsChoice criteria & ComparisonThe solution Problems addressed, challenges and resolutionQuestionsProblem summaryA lot of spam being handled inside the networkMalware through zip files. Quarantined zip files resulted in reduced productivity for staff and internal IT staffMail cannot be queued if email server is downCurrent method used to combat spam:Pros and ConsInstalling Symantec Mail Security for Microsoft Exchange on Exchange 2003 ServerSymantec Mail Gateway on Web Server to protect back-end Linux Mail ServerPros: Reduced spam and malwareCons: Costly solution – 2 separate solutions for our Email environmentMalware from zip filesQuarantined zip files and manually sent to end users.This resulted in decreased productivity for staff and Network TeamProposed methodsBarracuda Spam FilterOutsourced solutionsPostiniMicrosoft Exchange Hosted ServicesSpamstopshereBarracudaA hardware spam filter normally placed behind your firewall to block spam Pros: A better solution than Symantec. It is hardware based so limited spam gets to the mail server because quarantined spam is stored on the Barracuda.Can be used for multiple Exchange servers. Symantec is a 1-1 solutionCons: Spam is still filtered inside the network90% of email is spam!Requires a lot of administration from Network team.Outsourced SolutionsMinimal spam gets to your mail serverZip files can be scanned and rejected if infectedUnified solution instead of 2 solutions for Exchange and Linux mail serversInbound and Outbound filteringReduced work from Internal IT staffPeace of mindVery costly compared to BarracudaChoice criteriaEvaluated 4 products: Barracuda, Postini, Spamstopshere and Microsoft Exchange Hosted Services.Leveraging existing solution in remote officeCost and ease of useInteroperability with different mail serversIntegration with Active DirectoryChecking false positivesFree trial and Technical Support availabilityComparison Cost Interoperability AD Integration Ease of Use Spamstopshere$19/month for 10 mailboxes; $105/month for 100 mailboxes; Yes, Microsoft Exchange 2003/7/10, SBS, LinuxYes, through export .csv file from AD. Not scalable due to manual updates Easy to setup $805/month for 1000 mailboxes (50% more with Enterprise) Microsoft Exchange Hosted Services$1.75/month per mailbox No, Microsoft Exchange 2003/7/10Integrates with AD, Scalable, automated Easy to setup Barracuda $2,680.00 per deviceYes, Microsoft Exchange 2003/7/10, SBS, LinuxYes, through Barracuda DC agent Easy to setup Postini$1.00/month per mailbox for Message security$2.00/month per mailbox for message discovery$3.75/month per mailbox for message discovery (extended)Yes, Microsoft Exchange 2003/7/10, SBS, LinuxIntegrates with AD, Scalable, automatedComplicated to setupComparison Leveraging existingSolution False Positives Free trial Tech support Spamstopshere Used in DC office that has SBS All emails can be stored on Enterprise version. Very low false positives (1 in 1000) 30 days 24 X 7 Microsoft Exchange Hosted Services Won’t work with SBSAddressed by user quarantine mailbox30-60 days 24 x 7 BarracudaCannot leverage existing solutionAddressed by user quarantine mailbox30 days 24 X 7 PostiniCannot leverage existing solutionAddressed by user quarantine mailbox None Partner basedComparison Features Compliance Spamstopshere Mail queuing, Anti-Spam, Anti-virusOutbound filtering, User quarantine (Enterprise only) HIPAA, SOX, PCI Microsoft Exchange Hosted ServicesMail queuing, Anti-Spam, Anti-virusOutbound filtering, User quarantine (Enterprise only)HIPAA, SOX, PCI BarracudaAnti-Spam, Anti-virusOutbound filtering, User quarantineHIPAA, SOX, PCI PostiniMail queuing, Anti-Spam, Anti-virusOutbound filtering, User quarantine (Enterprise only)HIPAA, SOX, PCIThe SolutionSelected Spamstopshere for the following reasons:Leveraging existing solution in remote officeOne solution for all our email platforms: SBS, Exchange 2003 and LinuxLower TCOSpamstopshereHow does it work?Clustered front-end mail servers that filter your emailBlocked categories selected by countries known to be spam senders eg China, NigeriaBack-end servers that forward filtered email to your firewall en route to your mail serverSince they specialize in spam filtering, most spammers are known by them. False positives are 1 in 1000 emails. Restrict allowed traffic to back-end servers and block everything elseProblems addressedZip files were delivered directly to end users.IT can concentrate on revenue generating projects than managing spamTremendous spam reduction. It stays outside our network.Unified solution for our 3 different email platforms.ChallengesProbability that the estimated 0.001% false positive email could be an important one.Outsourced websites and survey sites hosted by vendors that need to use our mail server to relay email Bounces from aol.com for outbound emailSome spam sent from legitimate senders thereby passing through the smart host.ResolutionUpgraded to Enterprise Edition in order to have quarantine of all emailsIn 2 months of use, 0 calls have been received concerning false positivesExplicitly grant access to the specific websites and survey sites that need to use our mail server.Possibly implement outbound filteringEnd user educationQUESTIONS/CLOSINGQuestions??Thanks for
View Full Document