Most hacking is done via External Transfer or Off Premise Notify.
In the web browser go to the Mailbox/Class Of Service and disable (if they do not use):
-External Transfer
-Off premise Notify
Do not be lazy, do all classes 1-15
If they insist having one or the other enabled then put them in their own COS and have them sign off on you enabling it.
Restrict lines (not the vmails DN):
0 (or 01 if somebody still uses the operator, if they even exist still)
10
*72 <---hackers are using this a lot lately with Off Prem Notify especially on Startalk Flash
They hack the mailbox, change outdial to their mobile, get the caller id, dial back in and change the # to *72011YYXXXXXXXXXX
They then call back and leave a message in that mailbox, bionic betty then calls out to what should be a mobile but instead unknowingly (she's blonde) forwards the line oversea's.
Make sure they (or you change) all passwords, use 6 to 8 digits passwords.
I always disable the Password Expiry (set to 0) it actually does more bad then good because people are frustrated with having to change passwords then the mailbox locks up and then they just use 1234 because they forgot the old one and so on.
You can also bump up the password retries so the mailbox does not lock up, they will only try so many passwords like 1234, 1111 the DN twice etc.
See my FAQ's for more in case you need to check things like DISA:
It all boils down to passwords, the rest is precautions.
I have always said 50% of humans are stupid and using passwords like 1234 is just plain stupid.
Other lose out on special features because of this.
________________________________________
=----(((((((((()----=
Toronto, Canada
Add me to
LinkedIN
