Solved

How do I prevent open relay but allow anonymous connections?

Posted on 2010-11-11
7
616 Views
Last Modified: 2012-05-10
I have a Microsoft Exchange 2003 server on MS Windows Server 2003. My server was sending out spam. I removed the anonymous access from the Access Control and now it isn't an open relay, but it appears as though external email is not being delivered. Did I do something wrong? Thanks.
0
Comment
Question by:leviatdr
  • 3
  • 2
  • 2
7 Comments
 
LVL 35

Assisted Solution

by:Ernie Beek
Ernie Beek earned 200 total points
ID: 34116415
read this one: http://www.amset.info/exchange/smtp-openrelay.asp

You can skip the part to check if you're an open relay ;-)
0
 
LVL 9

Expert Comment

by:vanbarsoun
ID: 34116429
You need enable the anonymous access. Click the RELAY button in the Access tab and make sure ONLY THE LIST BELOW is selected and no entries exist below that.
0
 

Author Comment

by:leviatdr
ID: 34116450
When I have Anonymous Access enabled, I can telnet into my mail server and send email without authentication. I went through the article above and could not resolve my issue. What else can I check?
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 9

Accepted Solution

by:
vanbarsoun earned 300 total points
ID: 34116482
You will be able to send email to addresses in your domain without authentication, but not to other domains. Go here and check to see if your IP is relaying:
http://mxtoolbox.com/diagnostic.aspx


0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 34116550
' I went through the article above and could not resolve my issue'

How did you check?
0
 

Author Comment

by:leviatdr
ID: 34116643
I checked it by trying the commands through telnet from an external IP.

I was incorrect about being an open relay. It seems more like a compromised user account. I've enabled authentication logging, hopefully I can figure out where the bulk email came from. Anything else I should watch?
0
 

Author Closing Comment

by:leviatdr
ID: 34116656
My initial assumption was wrong. I was not a open relay. Further investigation is needed to find out why my mail server was sending out spam.
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question