I provide IT Services to a client who, for the longest time in the world, has been using a POP3 server from Network Solutions to handle their email.
At this time, I'm introducing the McAfee SaaS email protection to give their email some type of security and filtering.
Well, turns out Network Solutions' POP3 services don't play well with McAfee.
Essentially, in McAfee, I provide the SMTP address, port # and test the connection. That works. I change the MX records to what McAfee wants. That works fine.
My issue is SMTP authentication. Network Solutions requires this. However, McAfee doesn't provide anything to pass on authentication (when I send an email to my client, it goes from me, to McAfee filter system, and McAfee hands off the email to Network Solutions). When McAffe is handing off the email, Network Solutions rejects it because there is no authentication taking place - and my email is rejected and sent back to me.
After much discussion with McAfee and Network Solutions, our only available solution is to disable authentication. This was AFTER I had two whole domains whitelisted to bypass authentication.
Before turning off SMTP authentication, I'm curious what the security risks are. If a computer were to become compromised, couldn't a hacker/spammer take control of that computer and possibly send thousands of emails at their will? (because w/SMTP authentication off, the computer - or more like the users' Outlook outgoing server options - no authentication is needed).
I'm concerned about the security risks. Network Solutions said they would turn it off, but cautioned me not to. Just curious what others would say about this....
Thanks for conversation...