Solved

Security issue on exchange server

Posted on 2008-09-30
7
163 Views
Last Modified: 2012-05-05
hi all

i have recently installed exchange 2007 and i have came up against a few issues that i hope i can get resolved

1. We have a script that runs on one server to send emails to certain customers - the problem being it would not work until i set the script to "NOT" authenticate as the administrator - it now sends email by passing straight to a mailbox !! what have i missed that is allowing this lapse in security?

2. I have been advised that i really should of went with an edge server, which i did not do. I can see the benefits obviously, but as we use a product from gfi that basically does the same by sitting in front of exchange and filters spam etc i thought there was really no need - plus i wanted to save on the hardware, am i really doing anything to cause concern considering we have less than 100 mailboxs?

0
Comment
Question by:meteorelec
  • 3
  • 2
  • 2
7 Comments
 
LVL 25

Accepted Solution

by:
kieran_b earned 175 total points
Comment Utility
1. the admin account has a lot of restrictions on it - but the fact that you are sending to internal users means you don't need to authenticate anyway - not a security flaw, a feature

2. I am yet to see a great need for an edge server in the real world...
0
 
LVL 11

Expert Comment

by:Bertling
Comment Utility
can you create a user for this service only? and authenicate the script using this new user? raher than appearing as a real users name?
0
 
LVL 11

Expert Comment

by:Bertling
Comment Utility
or just permit the ip address of the server the script runs on to relay trough your exchange server which wont require authenticaton
0
Don't lose your head updating email signatures!

Do your end users still have the wrong email signature? Do email signature updates bore you or fill you with a sense of dread? You can make this a whole lot easier on yourself by trusting an Exclaimer email signature management solution. Over 50 million users do...so should you!

 
LVL 2

Author Comment

by:meteorelec
Comment Utility
i am sending on behalf of an internal address to external address's

eg services@companyname.com  to joebloggs@hotmail.com

forgot i could restrict in relay by ip address!! that should tie it down pretty much

Can anyone think why a support guy (microsoft techy) would be very adament that i need an edge server? or is he a little to brain washed?

0
 
LVL 25

Expert Comment

by:kieran_b
Comment Utility
I would say that is the brainwashing...

For your size network, it is unnecessary - the other Exchange MVPs seem to agree as well
0
 
LVL 11

Assisted Solution

by:Bertling
Bertling earned 175 total points
Comment Utility
0
 
LVL 2

Author Comment

by:meteorelec
Comment Utility
thanks for advice guys
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now