Exchange Server Verify Incoming Emails

All,

We recently had a external security firm check our IT systems and procedures. One thing that was mentioned was the following

"We tried connecting to the exchange server on the network and spoof some fake emails but with no success, the server requires authentication.
However, when an incoming email carrying the same domain as the server’s domain the server did not validate the mail and transferred it as it is to the clients. Advise it so verifty incoming emails"

Im not sure how we can verify incoming emails, any iteams how to make this more secure?

Thanks in advance
Rio_10Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

suriyaehnopCommented:
However, when an incoming email carrying the same domain as the server’s domain the server did not validate the mail and transferred it as it is to the clients.

This is usually a method used by spam mail. Normally what I did it to verify the sender IP adddress. You can check the sender IP address from email internet header. Then, add the sender IP address to block list in mail gateway
0
BusbarSolutions ArchitectCommented:
Installing a SMTP filtering sw will aid that
0
Alan HardistyCo-OwnerCommented:
If you setup Sender ID filtering and publish an SPF record, then your server should reject spam mails claiming to come from your own domain:

http://technet.microsoft.com/en-us/magazine/2006.12.sidf.aspx

Not sure what version of Exchange you have as you haven't stated.

Alan
0
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

AmitIT ArchitectCommented:
You need a 3rd party web based filter tool here. Like Message Labs or FOPE.
0
Alan HardistyCo-OwnerCommented:
Or you can use the free tools that can be added to exchange.

Or you can use Vamsoft ORF Fusion - www.vamsoft.com.
0
Rio_10Author Commented:
Its Exchange 2010
0
AmitIT ArchitectCommented:
If you need effective scanning, look for FOPE or Message labs. You need a tool which updates it spam definitions regularly.
0
Rio_10Author Commented:
We use mailmarshall. This checks the email content and if all is ok it forwards it to Exchange and then to the users mailbox. This obviously checks from outside, the security audit firm was inside the network and so connected directly to the Exchange server.

"when an incoming email carrying the same domain as the server’s domain the server did not validate the mail and transferred it as it is to the clients"

is there a way in Exchange 2010 to avoid the above?
0
AmitIT ArchitectCommented:
You need to restrict anonymous relaying and enable only authenticated users can relay from this server. Next create separate connector for Application relaying. if required.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Alan HardistyCo-OwnerCommented:
If you are using MailMarshall, you need to configure that to reject the messages.

Never used Mailmarshall, so can't help beyond Googling for an answer which I'm sure you are capable of.

Alan
0
Rio_10Author Commented:
Created seperate connectors for devices and users.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.