We have a 2003 small business server that was used in a mail relay spam attack. I did at least the following to disable mail relaying.
- I deleted the internet smtp conection
- changed the admin password
- disabled the security for anomyous and everyone
- turned off IUSR and IWAM accounts
Now I think I have re-enabled all of those
I created a new SMTP connector and unchecked mail relaying.
I am currently able to send mail but not able to recive mail, and when I go to dnsstuff.com I get the following error: this is the right ip address for our exchange server.
tdmconsulting.com. - 220.127.116.11 [Could not connect: Got an unknown MAIL FROM response: 454 5.7.3 Client does not have permission to submit mail to this server.
What I am thinking is happening is I disabled anonomus connections to the server in one of 100 possible locations, please give me some ideas of where to look, to open the server back up.