Un-Authorized Spam Relay

Discussion in 'Windows Small Business Server' started by IE, Mar 2, 2004.

  1. IE

    IE Guest

    It appears that someone has managed to relay some unauthorized email through
    our exchange server. Are there some particular settings that I should have
    in place within exchange and/or SBS 2003 (Premium) to better prevent this
    from happening? Any assistance would be GREATLY appreciated!!!!
    Thanks!!

    IE
     
    IE, Mar 2, 2004
    #1
    1. Advertisements

  2. IE

    Roger Guest

    These were taken from Susan Bradley's post yesterday...

    This book guides you through the process of hardening
    your Exchange 2003 environment, including configuration
    recommendations and strategies for combating external
    threats.

    http://www.microsoft.com/downloads/details.aspx?
    familyid=f3a7fa86-6818-438c-90b6-84dc3cc9eb1b

    This guide provides instructions and templates for
    protecting a domain name from spoofing using the Caller
    ID Technical Specification.

    http://www.microsoft.com/downloads/details.aspx?
    familyid=9a9e8a28-3e85-4d07-9d0f-6daeabd3b71b

    "Caller ID for E-Mail: The Next Step to Deterring Spam"
    is Microsoft's draft technical specification to address
    the widespread problem of domain spoofing.

    http://www.microsoft.com/downloads/details.aspx?
    familyid=d4d43d49-8772-4601-afdc-a9b0ce6bdc81
     
    Roger, Mar 2, 2004
    #2
    1. Advertisements

  3. There is a great article on the microsoft support site. Here is a link for
    it.
    http://support.microsoft.com/default.aspx?scid=kb;en-us;324958

    Robert King
    Microsoft Product Support Specialist
    This posting is provided "AS IS" with no warranties, and confers no rights.

    --------------------
    |
    | It appears that someone has managed to relay some unauthorized email
    through
    | our exchange server. Are there some particular settings that I should have
    | in place within exchange and/or SBS 2003 (Premium) to better prevent this
    | from happening? Any assistance would be GREATLY appreciated!!!!
    | Thanks!!
    |
    | IE
    |
    |
    |
     
    Robert King [MSFT], Mar 2, 2004
    #3
  4. IE,

    Take a look at the following:

    324958 HOW TO: Block Open SMTP Relaying and Clean Up Exchange Server SMTP
    http://support.microsoft.com/?id=324958

    If an enabled domain account password is cracked, then all bets are off and
    "spoofing" will bypass the anti-relay settings. The best way guard against
    this is to enforce strong password policies and change passwords
    periodically.

    Franz Foster
    Microsoft Technical Support

    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Franz Foster[MS], Mar 2, 2004
    #4
  5. IE

    IE Guest

    I'll look these over. Thank you for your help!

    IE
     
    IE, Mar 2, 2004
    #5
  6. IE

    IE Guest

    Will do. Thank you all very much for your input!

    IE
     
    IE, Mar 2, 2004
    #6
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.