Permissions and security

• Warning: Only password-protected encryption gives strong security to Internet services such as a directory server. Encryption (such as SSL) is not currently available with ClickMail. The protections below give lesser, but still useful, security options.

Database permissions

Database permissions apply to the database as a whole, by controlling whether a user can log in or search. Where a user is denied by database permissions, that user cannot log in or search.

To allow access by client programs, choose Permissions from the Database menu. Set the permissions according to directions for the Permissions Window, below.

• Warning: When permissions are enabled, anyone who can connect via TCP/IP to the server running ClickMail can read data from the directory via LDAP. This may include everyone on the Internet. If you wish information in the directory to be shown only to users inside your company, use the IP Address range setting. This does not guarantee that no one can possibly access your data outside the company, but it provides some security. You should have a working knowledge of Internet security when setting up any Internet protocol server.

The default for new directories is no access. That is, you must set permissions for the directory before anyone can read from it.