Default SMTP Virtual Server - Best authentication methods?
- From: Mike H <mkREMOVEhuskeyALL@xxxxxxxxxxxxxxxxxxx>
- Date: Fri, 1 Jun 2007 17:56:35 -0700
In setting up Intelligent Message Filter for Exchange 2003 SP2 I
followed the guidelines in "Microsoft Exchange Server Intelligent
Message Filter v2 Operations Guide".
On pages 10 and 11 Microsoft discusses "Helping to Secure Your Gateway
SMTP Virtual Servers." To this end it's suggested that for the inbound
Exchange Server, which in my case is the default virtual server, one
accept only Anonymous Access, unstriking Basic Authentication and
Integrated Windows Authentication. I'm told by the documentation that
this prevents one source of password discovery. In the default
installation on my server all three of those methods were ticked.
I feel like checking that out here. I see many more SMTP connection
errors in the Application Log, but I'm not sure that's related. I've
gone from 0-6 SMTP connection errors a day to about 20. These errors
have always been have been and continue to be MSExchange Transport
EventIDs 7004 and 7010. They appear to be legitimately REJECTED
connections. I am in no way unhappy or concerned by those errors.
* What I'm wondering is if illegitimate connections were being made
before, or is what is now 0-20 connection drops still in the range of
"normal"?
* Are those authentication settings correct?
--
Mike H
.
- Follow-Ups:
- RE: Default SMTP Virtual Server - Best authentication methods?
- From: Robert Li [MSFT]
- RE: Default SMTP Virtual Server - Best authentication methods?
- Prev by Date: Re: "Real" SBS Install
- Next by Date: Re: NAT question
- Previous by thread: mailing list / pop3 issues
- Next by thread: RE: Default SMTP Virtual Server - Best authentication methods?
- Index(es):
Relevant Pages
|
