How to stop Exchange 2007 open relay
Hi all,
I have a problem with an Exchange 2007 Open Relay. I know that by default the open relay is not permited, but I broke it up . So I want to receive mail from everyone, but the recepients must be only accounts from the organization. We don't have an Edge server. I found many, many articles for that problem but they were for Exchange 2003 and Exchange 5.5.
For example this one http://www.msexchange.org/pages/article.asp?id=54.
Can someone help me please to configure it on Exchange 2007?
August 12th, 2008 4:41pm
as long as you don't have wildcards in accepted domains you are fine, run a get-accepteddomain and post it here if you like.
Free Windows Admin Tool Kit Click here and download it now
August 12th, 2008 7:02pm
No its not a wildcard, on running get-accepteddomain I get:
Name DomainName DomainType Default
--------------- ------------------------ ------------------------------
exchangesrv businessoft.localAuthoritative True
And the problem is that when I test it with telnet:
telnet online.businessoft.bg 25
helo businessoft
mail frompammer@spam.com
SenderOK
rcpt to:test@test.com
Recipient OK
it gives me that Recipient OK and therefore the spammers can send mail through our server???
Pleaseee how can I fix it?
In Exchange 2003 there is an option telling very clearly : Only authenticated users can send mails.
Where is that option in Exchange 2007?
August 13th, 2008 8:56am
I found the solution!
In the accepted domains by default Exchange 2007 put businessoft.local(I was told that by security reasons it is better to name it this way), but our real domain is businessoft.bg, so I had to add another accepted domain for businessoft.bg and also remove the Accept Any Recipient right on anonymous account for the default receive connector.
Free Windows Admin Tool Kit Click here and download it now
August 13th, 2008 2:24pm