Re: SMTP Relaying

From: "Brian" <brian@xxxxxxxxxx>
Date: Sun, 19 Nov 2006 10:47:49 -0000

Try reading:
http://technet2.microsoft.com/WindowsServer/en/library/8ffae10b-01ac-45ad-ab5f-1006b73a68dd1033.mspx?mfr=true
http://technet2.microsoft.com/WindowsServer/en/library/79b21824-0eee-46e6-8976-22a249daeb1c1033.mspx?mfr=true
Or any number of pages on MS website!

TLS is pretty much the same concept as SSL, it's just a newer protocol! Your
SMTP server has a certificate (issued either by an internal CA, or an
external one like Verisign), which the client uses to verify the SMTP server
is who it says it is, and you can also setup the clients with certificates
so the SMTP server can verify them. You could setup the SMTP server, so that
if the clients don't have a valid certificate, they can't connect (This gets
expensive if you don't have an internal CA to issue client certificates)
Take a look at http://support.microsoft.com/kb/829721

You might ant to give the braindumps a miss next time you go for a
certification!

Brian
MCSE 2000, 2003, CISSP, Security+, Network+, Server+

"AU" <AU@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:2FFFADAE-907E-4FCD-B5EF-2EFCD7AF6D25@xxxxxxxxxxxxxxxx

Actually now that I think of it I want to use my SMTP server as a smtp
serer
and not a relay server how can I achieve this?
--
AU
MCP, Network+, A+

"AU" wrote:

Hello,

I have a dedicated Windows 2003 box with ISA 2004. It is pretty well
protected from external and internal threats in my oponion.

I have the security set to use SMTP Authentication for both Outbound and
Inbound connections.

I'd like to have more security besides this what can I do to achieve
this?

I want to have layers of security of you get what I am saying, SMTP Auth
is
one layer I want another I do not quite understand the concept of TLS and
how
I will implnement it on the client and server side.

Your suggestions and comments are welcome.

Thanks,
Ashish

--
AU
MCP, Network+, A+

Prev by Date: Re: Can't use IIS SMTP server
Next by Date: Helo command rejected: need fully-qualified hostname?
Previous by thread: Msg. Field for Sender Email?
Next by thread: Helo command rejected: need fully-qualified hostname?
Index(es):
- Date
- Thread

Relevant Pages

Re: Web Service Security
... The asmx file security is now set to 'ignore client certificates.' ... Viewing the certificate using the View Certificate button under directory ... you must install the certificate with a private key (usually ...
(microsoft.public.dotnet.framework.aspnet.security)
WSE and X509 trouble
... i've some question about security with x509 that are not clear to me ... are these steps correct to make a security soap based test ... now wizard tell me to choose the certificate to use for client ...
(microsoft.public.dotnet.framework.webservices.enhancements)
Re: (New Subject): How to eliminate prompt for credentials when using RPC over HTTP
... > that it is installed on the client running Outlook 2003. ... > *Certificate Configuration* ... > Security Alert pops up regarding the certificate. ...
(microsoft.public.windows.server.sbs)
WSE -3.0 WebServices Deployement in IIS Server
... I have developed Web services based on WSE3.0 X.509 Certificate ... services and client application working fine with out any issues. ... I am getting following error message, I think some security settings ...
(microsoft.public.dotnet.framework.webservices)
WSE -3.0 Deployement in IIS Server Issues
... I have developed Web services based on WSE3.0 X.509 Certificate ... services and client application working fine with out any issues. ... I am getting following error message, I think some security settings ...
(microsoft.public.dotnet.framework.webservices.enhancements)