28 Oct
2013
28 Oct
'13
12:19 a.m.
On Sun, Oct 27, 2013 at 1:19 PM, Jay Ashworth <jra@baylink.com> wrote:
Alas, it can't. Using it against LI would work, cause you have a hope of knowing what address space their proxies are in.
LI's behavior is unique. LI is probably the only one you need to detect.
You can't do that generically, unless you somehow whitelist the IPs your users will be validly coming from, or figure out a way to determine what client is connecting.
This may be easier than you think, if remote account access is allowed only using Web-based mail, and company managed mobile devices. Whitelist the cell carrier's mobile network, using ActiveSync. An IMAP connection attempt from anywhere is immediately suspect.
-- jra
-- -JH