Exchange 2003 - Inheritable Permissions

In fixing a previous issue (, I came across this one.

If I look at the security settings of "All Global Address Lists" in the system manager, it says the permissions are inheritable from the parent. The same is true if I look at the security settings for my server in the system manager. There are quite a few unexpected entries (multiple entries for "Everyone" and "ANONYMOUS LOGON" that have multiple different settings - some blank, some specialized) and I would like to clean this up, but this begs the question: what are the parent objects in this scenario? What are these objects inheriting permissions from?
Who is Participating?
SembeeConnect With a Mentor Commented:
You accepted the wrong answer.
The answer from Amit Aggarwal is the proper way to secure your distribution groups.

The rule with Exchange permissions is DO NOT TOUCH.

People start removing permissions that they don't understand and then wonder why their Exchange breaks.
The only people that benefit from changing permissions in Exchange are consultants like me or Microsoft, who then charge you large amounts of money to fix the permissions back to how they were.

The permissions are there for a reason - often to allow read only access, to deny access and to allow services to see that something is there but not see the data.

brainboltAuthor Commented:
What about the original question then? I certainly don't want regular users to be able to modify a distribution list. Is it safe to modify those permissions?
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.