• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 212
  • Last Modified:

Security issue on exchange server

hi all

i have recently installed exchange 2007 and i have came up against a few issues that i hope i can get resolved

1. We have a script that runs on one server to send emails to certain customers - the problem being it would not work until i set the script to "NOT" authenticate as the administrator - it now sends email by passing straight to a mailbox !! what have i missed that is allowing this lapse in security?

2. I have been advised that i really should of went with an edge server, which i did not do. I can see the benefits obviously, but as we use a product from gfi that basically does the same by sitting in front of exchange and filters spam etc i thought there was really no need - plus i wanted to save on the hardware, am i really doing anything to cause concern considering we have less than 100 mailboxs?

0
meteorelec
Asked:
meteorelec
  • 3
  • 2
  • 2
2 Solutions
 
kieran_bCommented:
1. the admin account has a lot of restrictions on it - but the fact that you are sending to internal users means you don't need to authenticate anyway - not a security flaw, a feature

2. I am yet to see a great need for an edge server in the real world...
0
 
BertlingCommented:
can you create a user for this service only? and authenicate the script using this new user? raher than appearing as a real users name?
0
 
BertlingCommented:
or just permit the ip address of the server the script runs on to relay trough your exchange server which wont require authenticaton
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
meteorelecAuthor Commented:
i am sending on behalf of an internal address to external address's

eg services@companyname.com  to joebloggs@hotmail.com

forgot i could restrict in relay by ip address!! that should tie it down pretty much

Can anyone think why a support guy (microsoft techy) would be very adament that i need an edge server? or is he a little to brain washed?

0
 
kieran_bCommented:
I would say that is the brainwashing...

For your size network, it is unnecessary - the other Exchange MVPs seem to agree as well
0
 
BertlingCommented:
0
 
meteorelecAuthor Commented:
thanks for advice guys
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Microsoft Azure 2017

Azure has a changed a lot since it was originally introduce by adding new services and features. Do you know everything you need to about Azure? This course will teach you about the Azure App Service, monitoring and application insights, DevOps, and Team Services.

  • 3
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now