• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1453
  • Last Modified:

how can I sercure an exchange server from a brute force attack via iis ntlm

how can i secure a exchange server from a brute force attack from IIS NTLM ?
0
brikeyes
Asked:
brikeyes
1 Solution
 
rakeshmiglaniCommented:

http://www.microsoft.com/technet/community/columns/5min/5min-301.mspx
5-minute Security Advisor - Configuring Outlook Web Access

http://www.microsoft.com/technet/prodtechnol/exchange/2003/library/exmessec.mspx
Exchange Server 2003 Message Security Guide

TechNet Webcast: Secure Access to Microsoft Exchange from the Internet—Level 300
http://www.microsoft.com/usa/webcasts/ondemand/2380.asp

XCCC: Front-End Server Considerations
http://support.microsoft.com/default.aspx?scid=kb;en-us;274219

Exchange Server Front-end/Back-end Terminology and Implementation
http://support.microsoft.com/default.aspx?scid=kb;en-us;246739

XADM: Setting Permissions on Virtual Directories in a Front-End and Back-End Deployment
http://support.microsoft.com/default.aspx?scid=kb;en-us;328757

XADM: White Paper - Using Microsoft Exchange 2000 Front-End Servers
http://support.microsoft.com/default.aspx?scid=kb;en-us;326276

Exchange Server 2003 Deployment Guide
http://www.microsoft.com/technet/prodtechnol/exchange/2003/library/depguide.mspx

Publishing Outlook Web Access (OWA) Sites using ISA Server 2004 Firewalls
http://www.isaserver.org/articles/2004owapub.html

RSA - Outlook Web Access Solution Brief
http://rsasecurity.agora.com/rsasecured/guides/solutions/MSOWA_LOGO_Brief_11_24_02.pdf
0
 
SembeeCommented:
Disconnect it from the Internet.

The point is - if someone is determined enough to get in, they will. If they can't brute force, then they will use another mechanism, social engineering for example.

Simon.
0

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now