Solved

how to prevent telnet spoofing of internet email addresses with Exchange 2010

Posted on 2014-02-19
4
2,989 Views
1 Endorsement
Last Modified: 2014-02-19
is there a way to prevent someone from telnet to my exchange server on port 25 and sending an email from user1-that-exist@mydomain.com to user2-that-exist@mydomain.com?

everything I've read so far doesn't really stop this. any suggestions?

Thanks
1
Comment
Question by:stevebishop
  • 2
  • 2
4 Comments
 
LVL 37

Accepted Solution

by:
Jamie McKillop earned 500 total points
ID: 39870623
Hello,

You can follow the instructions in this article to prevent domain spoofing of your internal domains:

http://exchangepedia.com/2008/09/how-to-prevent-annoying-spam-from-your-own-domain.html

-JJ
1
 

Author Comment

by:stevebishop
ID: 39870945
JJ,

Thanks for the response, what would be the opposite of that command in case I needed to revert the change?

Get-ReceiveConnector “My Internet ReceiveConnector” | Get-ADPermission -user “NT AUTHORITY\Anonymous Logon” | where {$_.ExtendedRights -like “ms-exch-smtp-accept-authoritative-domain-sender”} | Remove-ADPermission


Would it be

Get-ReceiveConnector “My Internet ReceiveConnector” | Get-ADPermission -user “NT AUTHORITY\Anonymous Logon” | where {$_.ExtendedRights -like “ms-exch-smtp-accept-authoritative-domain-sender”} | Add-ADPermission

?

Thanks
0
 
LVL 37

Expert Comment

by:Jamie McKillop
ID: 39870952
You would run this command to revert back:

Get-ReceiveConnector “Name of your RCV connector” | Add-ADPermission -User “NT AUTHORITY\Anonymous Logon” -ExtendedRights “ms-Exch-SMTP-Accept-Authoritative-Domain-Sender”

-JJ
1
 

Author Comment

by:stevebishop
ID: 39871444
Thanks JJ,

Implemented the change, tested it and i'm not allow to do it anymore. Looks like its working!

Sbishop
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …

679 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question