Based on Cisco, this characteristic isn’t enabled by default, and, it stated, “deployment guides for these merchandise don’t require this characteristic to be straight uncovered to the web.” This makes it sound as if prospects enabling the characteristic can be the exception.
Whereas that’s most likely true — exposing a service like this by way of a public port goes in opposition to greatest follow — one use case referenced in Cisco’s Person Information can be to permit distant customers to examine quarantined spam for themselves. The variety of organizations utilizing these merchandise which have enabled it for that reason is, after all, inconceivable to say.
To reprise, Cisco stated that susceptible prospects are these working Cisco AsyncOS Software program with each Spam Quarantine turned on and uncovered to and reachable from the web. On condition that no workarounds are attainable, this suggests that merely turning off entry by way of a public interface (by default, port 6025, or 82/83 for the online portal) isn’t enough by itself.
