Laride
asked on
SMTP Security
I have just set up a simple 2003 server to host a couple of key web sites. It is not a name server.
My concern is the security surrounding port 25
I have set up the virtual smtp server and I hope i have put the right security in place to stop people using it for spam.
Could someone confirm if my settings are sufficient to do this?
Delivery/Outbound security = anonymous access
Access/Authentication = anonymous access
Access/Conection control = left blank (do I need to set this the same as the relay option?)
Relay = Only the list below to have access and the IP of my web server.
That's about it. I'm dead nervous about leaving port 25 open. Will it be safe with the above settings?
Many thanks
My concern is the security surrounding port 25
I have set up the virtual smtp server and I hope i have put the right security in place to stop people using it for spam.
Could someone confirm if my settings are sufficient to do this?
Delivery/Outbound security = anonymous access
Access/Authentication = anonymous access
Access/Conection control = left blank (do I need to set this the same as the relay option?)
Relay = Only the list below to have access and the IP of my web server.
That's about it. I'm dead nervous about leaving port 25 open. Will it be safe with the above settings?
Many thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
On the subject of a firewall; would it be OK to use the 2003 server soft firewall which comes with the latest service pack?
It seems that the cost of a PIX or equivalent is a little over the top.
What would be the REAL benefit of a hardware firewall?
It seems that the cost of a PIX or equivalent is a little over the top.
What would be the REAL benefit of a hardware firewall?
Laride
Yes, you can use the builtin firewall, but be careful how you configure it to make sure you're not missing anything.
Hardware firewalls are usually faster and typically "more" secure and feature rich as they are dedicated boxes. Software firewalls are cheaper and often have less features and are dependant for their security on the OS they reside on.
Software firewalls are fine for most applications - I use one here.
Cheers
JamesDS
Yes, you can use the builtin firewall, but be careful how you configure it to make sure you're not missing anything.
Hardware firewalls are usually faster and typically "more" secure and feature rich as they are dedicated boxes. Software firewalls are cheaper and often have less features and are dependant for their security on the OS they reside on.
Software firewalls are fine for most applications - I use one here.
Cheers
JamesDS
ASKER
Thanks James, sound advice.
Laride
Welcome, glad to help
Cheers
JamesDS
Welcome, glad to help
Cheers
JamesDS
Also, FIREWALL your server (of course!)
Cheers
JamesDS