Hi all,I have recently migrated a bank to exchange 2007. I have noticed that any NDR being sent to external and internal users contain much sensitive information in the"Diagnostic information for administrators" section which the IT manager in the bank qualifies a potential security risk.I want to know if there is any means / techniques via which I can remove / hide the "Diagnostic information for administrators" section from the NDRs. Note that I must not disable NDRs as this is the bank requirements to have NDRs. Previously in Exchange 2003 the NDRs were not containing any such sensitive information.Please help !!!

Have a look at James recommendation's on this http://social.technet.microsoft.com/forums/en-US/exchangesvrtransport/thread/b6344f20-1527-4b4a-b9ce-a86119034efa/ 1. Set a transport rule to redirect all NDR to a specific mailbox 2. If what you consider is security, you can disable NDR for external on the Hub Set-RemoteDomain "Default" -NdrEnabled $false 3. If what you consider is the size of NDR, you can disable the attachment of original message in it on the Hub and Edge Set-TransportServer -id Servername -ExternalDsnMaxMessageAttachSize 0 Set-TransportServer -id Servername -InternalDsnMaxMessageAttachSize 0 References: Exchange 2007 NDR How to Modify an Existing DSN MessageRaj

Its not sensitive information. They can get the virtually the same information from theSMTP logs or the Internet Headers of the message.

Hi Siddick, Based on my research, we do not have a method to Hide / Remove "Diagnostic information for administrators" from Exchange Server 2007 NDRs at the moment. In Exchange 2010, we may have some changes to exclude Headers information fromthe message body of the DSN for externally bound messages~~~~~~~~~~~~~~~~ Mike Shen TechNet Subscriber Support in forum If you have any feedback on our support, pleasecontact tngfb@microsoft.com ~~~~~~~~~~~~~~~~

Hi Rajnish, Andy and Mike,Thank you for the information. If the "Diagnostic information for administrators" cannot be removed then I shall ask the IT manager to disable NDRs.Thank you for the vital information.Regards.