| IPS offers several preemptive protections against POP3 related vulnerabilities:
Empty POP3 Username - According to RFC 1939, a username must be provided before downloading emails from the POP3 server. Not providing a username might indicate an attempt to attack the server. By activating this protection, IPS can detect or prevent POP3 connections with login attempts which do not contain a user.
Empty POP3 Password - According to RFC 1939, a password must be provided before downloading emails from the POP3 server. Not providing a password might indicate an attempt to attack the server or enter the POP3 account without permission. In addition, enforcing a non-empty POP3 password policy increases security. By activating this protection, IPS can detect or prevent POP3 connections with login attempts which do not contain a password.
Non Compliant POP3 - Unexpected characters used in POP3 connections might indicate an attempt to attack the mail server. By activating this protection, IPS can detect or prevent POP3 connections which cannot be inspected because they violate the fundamentals of the POP3 protocol.
POP3 STARTTLS Command - Block attempts to use encrypted TLS sessions for POP3, as defined in RFC 2595. By activating this protection, IPS can detect or prevent POP3 connections which are encrypted. Note: if this protection is not enabled and the POP3 session is encrypted, it may not be possible to enforce other POP3 protections for this connection.
Use Malicious Code Protector for POP3 - By manipulating the POP3 command arguments so that they contain assembler code, an attacker can create a memory corruption that can cause a server to crash or even run arbitrary code. An attack exploiting such vulnerability does not require user interaction. This allows the attack to spread easily via reusable exploit scripts or worms. By enabling this protection, IPS wi | 
Feedback