asked on

Limit ESMTP verbs on an exchange 2003 server

How Can I limit the ESMTP verbs on my exchange 2003 server to the following only:

AUTH, DATA, EHLO, ETRN, HELO, HELP, MAIL, NOOP, QUIT, RCPT, RSET,
SAML, SEND, SOML, and VRFY

I need to limit the verbs so I can pass traffic thru a Cisco ASA with Inspect ESMTP enabled. Disabling portocol inspection is not a desired answer, so please don't post that:

nightmare2

I've never tried, but this should help you:
How to turn off ESMTP verbs in Exchange 2000 Server and in Exchange Server 2003
http://support.microsoft.com/kb/q257569

Jim_Coyne

ASKER

From that article:
By default, this value is 7697601 (0x7574C1H). When you subtract the corresponding decimal value from this number, you can turn on or off the various ESMTP verbs. For example, when you turn off 8bitmime support, the value that results is SmtpInboundCommandSupportOptions value is 3503297 (0x3574C1H)

Ok, so what is the value for the following to be on?

AUTH, DATA, EHLO, ETRN, HELO, HELP, MAIL, NOOP, QUIT, RCPT, RSET,
SAML, SEND, SOML, and VRFY

Sembee

Your better option is turn off the Cisco inspect SMTP feature. Those options cause nothing but problems with SMTP delivery.

Simon.

Jim_Coyne

ASKER

It's not the inspect ESMTP (Cisco) that is the issue. It's the exchange server using extra verbs.

protocol inspection stops attacks like this:

http://www.securityfocus.com/bid/13118

ASKER CERTIFIED SOLUTION

nightmare2

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

SOLUTION

Sembee

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial