Cisco Bug: CSCuo14935 - ENH: SMA mailconfig option to send configurations via CRES
Nov 13, 2016
- Cisco Content Security Management Appliance
Known Affected Releases
Symptom: client risks his email security by sending configs over plain text smtp 25 over the internet Conditions: The only security mechanism still requires awareness of the implied security risk by the administrator. He can send to any email address on the internet. Even in best case scenario: Client enters his email address, message communicated to his SMTP route, hopefully TLS enabled but there is still danger in sending it plain text to any other domain on the internet, exposing the configuration to sniffing / interception.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases