I feel unwilling to unblock the :20000 port to the outside world because I'm unsure if hackbots would be able to attempt brute force indiscriminately on it.
I do have csf and lsd installed as well as the firewall. If I opened up that port to the world would they automatically block failed logins? How can I check?
I'm thinking that the ideal way to open up emails to the people in the office would be to create keys.
I would create a key for userA and so long as userA connects to the server with this key the user would be able to log in. Is it possible to have the firewall accept a per key user.
What is the term for this type of verification so that I can look it up on google. Is there a tutorial that describes this situation. I would appreciate the help with any other alternatives for securing email access as well.
-Ramblings- I'm assuming that the firewalls block only per ip basis, would they ever be able to analyze for a key.