• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 554
  • Last Modified:

Exchange 2003 SP2 and SMTP virtual server anonymous connection?

When I open up Exchange system manager and go under the smtp virtual servers I noticed there is an option for anonymous smtp connections. This is enabled. Should this be deselected, and what is it's purpose? With it selected does it mean anyone can send an email message on the internet and they don't have to be authenticated on the Windows 200X system?

Thanks
0
john_s99
Asked:
john_s99
1 Solution
 
MikeeMiracleCommented:
This is by design and default behaiviour.  When someone sends you an e-mail, their server
connects annonymously to your exchange servers SMTP server.  If you removed this setting then any server wishing to send e-mail to you would have to authenticate to Exchange first with correct login details before exchange would accept mail from them.  As no mail servers on the internet would be configured with logon details for your exchange server, you will recieve no e-mail.

If anything, some people advise that you should remove everything but the annonymous.  The reason for this is that by default you CAN try to authenticate to the SMTP server.  This means that someone could mount a dictionary attack on the server, hence this can be viewed as a security issue.  As all internet mail server deliver e-mail annonymously, no internet e-mail is affected if you remove the other authentication options.

I think you have confused this setting with mail relaying which allows people to send mail without first authenticating to your server.  Mail relaying is not permitted in Exchange 2003 by default.
0

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now