Hi there,
I am keen to role out “Outlook Web Access” for all our travelling users.
I have set-up an OWA Server in a DMZ off of our firewall and protected the IIS server with RSA Security’s Web ID funtionality. The site requires a Secure connection using SSL so I have 40-bit encrypted tunnel between browser and Outlook Web Access Server. Our Firewall has a rule with Source “Any” to Destination “IP Address of the Web Server” on Service “Port 443 (Https)”.
This is all working with our SecurID cards required for accessing it. I am happy that the comms are secure enough for protection from the Internet.
My concerns are for the following scenario: –
When my user logs on to any PC in anywhere in the world and accesses their email from the browser, what happens to the cached Web Pages? and, if they launch attachments (Word and Excel, etc), the file saves to the local “Temporary Internet Files” folder.
This poses a serious security breach to us as we cannot expect our users to know about going into the different locations and deleting cached files and pages.
Is there any way I can avoid this happening?
I cannot believe that I am the only person experiencing this, so I may be missing something obvious.
I would be grateful for any info you have on this.
Regards
