Aaron Wolfe wrote:
Why can your end users "access an outgoing port"? You are not addressing this problem at it's source. Police your outbound traffic. If its from an end user and it isn't bound for port 80 or 443, why are you allowing the traffic to leave your network?
Because that is throwing the baby out with the bathwater. The business requires the use of services that run on ports other than ports 80 and 443, and the business believes that IT must adapt to the needs of the business, not the other way around.
Regards, Graham --
smime.p7s
Description: S/MIME Cryptographic Signature
