[166516] in North American Network Operators' Group
Re: If you're on LinkedIn, and you use a smart phone...
daemon@ATHENA.MIT.EDU (Jimmy Hess)
Mon Oct 28 00:19:41 2013
In-Reply-To: <2245767.2787.1382897987168.JavaMail.root@benjamin.baylink.com>
Date: Sun, 27 Oct 2013 23:19:28 -0500
From: Jimmy Hess <mysidia@gmail.com>
To: Jay Ashworth <jra@baylink.com>
Cc: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Sun, Oct 27, 2013 at 1:19 PM, Jay Ashworth <jra@baylink.com> wrote:
>
> Alas, it can't. Using it against LI would work, cause you have a hope of
> knowing what address space their proxies are in.
>
LI's behavior is unique. LI is probably the only one you need to detect.
> You can't do that generically, unless you somehow whitelist the IPs your
> users will be validly coming from, or figure out a way to determine what
> client is connecting.
>
This may be easier than you think, if remote account access is allowed
only using Web-based mail, and company managed mobile devices.
Whitelist the cell carrier's mobile network, using ActiveSync.
An IMAP connection attempt from anywhere is immediately suspect.
> -- jra
>
--
-JH
