Exchange 2003 SP2 and SMTP virtual server anonymous connection?

Posted on 2006-03-22
Last Modified: 2013-11-15
When I open up Exchange system manager and go under the smtp virtual servers I noticed there is an option for anonymous smtp connections. This is enabled. Should this be deselected, and what is it's purpose? With it selected does it mean anyone can send an email message on the internet and they don't have to be authenticated on the Windows 200X system?

Question by:john_s99
    1 Comment
    LVL 6

    Accepted Solution

    This is by design and default behaiviour.  When someone sends you an e-mail, their server
    connects annonymously to your exchange servers SMTP server.  If you removed this setting then any server wishing to send e-mail to you would have to authenticate to Exchange first with correct login details before exchange would accept mail from them.  As no mail servers on the internet would be configured with logon details for your exchange server, you will recieve no e-mail.

    If anything, some people advise that you should remove everything but the annonymous.  The reason for this is that by default you CAN try to authenticate to the SMTP server.  This means that someone could mount a dictionary attack on the server, hence this can be viewed as a security issue.  As all internet mail server deliver e-mail annonymously, no internet e-mail is affected if you remove the other authentication options.

    I think you have confused this setting with mail relaying which allows people to send mail without first authenticating to your server.  Mail relaying is not permitted in Exchange 2003 by default.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Join & Write a Comment

    "Migrate" an SMTP relay receive connector to a new server using info from an old server.
    The Delta outage: 650 cancelled flights, more than 1200 delayed flights, thousands of frustrated customers, tens of millions of dollars in damages – plus untold reputational damage to one of the world’s most trusted airlines. All due to a catastroph…
    This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
    This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now