[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now


How do I prevent open relay but allow anonymous connections?

Posted on 2010-11-11
Medium Priority
Last Modified: 2012-05-10
I have a Microsoft Exchange 2003 server on MS Windows Server 2003. My server was sending out spam. I removed the anonymous access from the Access Control and now it isn't an open relay, but it appears as though external email is not being delivered. Did I do something wrong? Thanks.
Question by:leviatdr
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
LVL 35

Assisted Solution

by:Ernie Beek
Ernie Beek earned 800 total points
ID: 34116415
read this one: http://www.amset.info/exchange/smtp-openrelay.asp

You can skip the part to check if you're an open relay ;-)

Expert Comment

ID: 34116429
You need enable the anonymous access. Click the RELAY button in the Access tab and make sure ONLY THE LIST BELOW is selected and no entries exist below that.

Author Comment

ID: 34116450
When I have Anonymous Access enabled, I can telnet into my mail server and send email without authentication. I went through the article above and could not resolve my issue. What else can I check?
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why


Accepted Solution

vanbarsoun earned 1200 total points
ID: 34116482
You will be able to send email to addresses in your domain without authentication, but not to other domains. Go here and check to see if your IP is relaying:

LVL 35

Expert Comment

by:Ernie Beek
ID: 34116550
' I went through the article above and could not resolve my issue'

How did you check?

Author Comment

ID: 34116643
I checked it by trying the commands through telnet from an external IP.

I was incorrect about being an open relay. It seems more like a compromised user account. I've enabled authentication logging, hopefully I can figure out where the bulk email came from. Anything else I should watch?

Author Closing Comment

ID: 34116656
My initial assumption was wrong. I was not a open relay. Further investigation is needed to find out why my mail server was sending out spam.

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A couple of months ago we ran into an issue that necessitated re-creating our Edge Subscriptions. However, when we attempted to execute the command: New-EdgeSubscription -filename C:\NewEdgeSub_01.xml we received an error indicating that the LDAP se…
One-stop solution for Exchange Administrators to address all MS Exchange Server issues, which is known by the name of Stellar Exchange Toolkit.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question