Results 1 to 3 of 3

Thread: Writeable external access to briefcase?

  1. #1
    ewilen's Avatar
    ewilen is offline Moderator
    Join Date
    Jun 2008
    Location
    Berkeley, CA
    Posts
    1,474
    Rep Power
    8

    Default Writeable external access to briefcase?

    I wonder if any thought has been given to providing users with the ability to allow external users not only to view the contents of a briefcase, but also to write to it. Perhaps on a permission-per-transaction basis?

    It seems to me that with this capability, Zimbra could be a good alternative to the type of service provided by Accellion.

    While email can be made secure by doing SMTP over TLS, for example, it's not currently practical to force this for all connections. However if I give my users the ability to create an externally-writeable briefcase on the fly, assign rights to specific outsiders, and if I require https for this access to zimbra--I think that would pretty much do the trick.

    I'm less concerned about the issue of large file transfer than about security, but, subject to the load a briefcase upload puts on the system, this same approach would let me just add more storage to my zimbra system as needed.

    Right now the main alternative of which I'm aware would be an sftp server, which involves a lot of overhead as users request changes to client access.

  2. #2
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,016
    Rep Power
    24

  3. #3
    ewilen's Avatar
    ewilen is offline Moderator
    Join Date
    Jun 2008
    Location
    Berkeley, CA
    Posts
    1,474
    Rep Power
    8

    Default

    Thank you, I just did so.

    I'm sure it would be baby steps at first, but the features of briefcase-sharing could be extended to such things as:

    • When a user adds an attachment to an email message, the user could be given the option of actually storing the file in their briefcase instead of transmitting it over email. The message would then get an auto-generated URL appended. This would simplify transmission of large files to outsiders whose email accounts have quotas that are too small.

    • Some method of ensuring that the external person sending/receiving files via briefcase is indeed the intended person. Obviously the simplest method would be to just not send the credentials via email. So to establish a transmission channel where security is paramount, the Zimbra user would send an "initiation" email containing a URL for setting up credentials, and the Zimbra user would be informed to make a separate phone call to the other party to convey a key. Once the recipient has been credentialed (and the credentials could be stored and associated with email addresses, so the process wouldn't have to be repeated too often), files could be transmitted securely.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Restricting external access
    By EiZ in forum Administrators
    Replies: 9
    Last Post: 02-08-2012, 12:01 PM
  2. Internal Access to External Domain Name
    By CharlieDavi in forum Administrators
    Replies: 4
    Last Post: 11-24-2008, 06:51 AM
  3. External users Briefcase problem.
    By Mace in forum Developers
    Replies: 1
    Last Post: 11-01-2008, 05:43 PM
  4. logging briefcase access
    By bbarnett in forum Administrators
    Replies: 0
    Last Post: 08-19-2008, 05:11 AM
  5. Disabling external POP/IMAP access
    By theklone in forum Administrators
    Replies: 1
    Last Post: 05-22-2008, 01:12 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •