An open door to mailboxes has been found.
ACL to mailboxes is OK and access is not allowed.
Some mails contain a kind of “document link”. If the receiver click on this “document link” the sendes mailbox will be added to the receivers workspace and the receiver will have full access to the senders mailbox.
This is very serious for our organization - what should we do to solve the problem ?
Subject: Re: Open Access
Probably not. Often users will have “read” access for all users to the calendar, in fact some companies insist on this for easier C & S.Are you sure they can actually see Inbox mail? There may be a list of meeting notices, but it is not likely that the user of the link can see everything.
What is the link pointing to? What sort of link?
Pete
Subject: Open access (subject closed / solved)
Confirm that it was only meeting and other calendar entries the user was able to read.Subject closed
Subject: Open access
The “link” is placed to the right just belowe subject line.Clickinh on this “link” will do the following:
Our standard is that all users (- a very few) have read access to read calendar entries.
Subject: Open Access
Steps are simple. By clicking the doc button …
related (origin mailbox) mailbox appears in the workspace
Subject: Open Access
The Icon will be added if the calendar has “Read” access for all users, but emails will not show, just meeting notices. Can the link user actually open emails?
Are you saying the link is a doclink to an email in the mailfile?
Pete