Our security department has decided that the diagnostic information that is provided by exchange to a Invalid email attempt is a vunerablity. They want me to set exchange to stop sending the diagnostic info, and not tell the world that it is a exchange server. Any way to do this? Is there a transport rule that could re-write the message somehow? Or is there a way to turn off sending the diagnostic info in the NDR replies?

Hi, The diagnostics information could not be removed in NDR. But you could disable the NDR function for external: Set-RemoteDomain "Default" -NdrEnabled $false More information: http://social.technet.microsoft.com/forums/en-US/exchangesvrtransport/thread/b6344f20-1527-4b4a-b9ce-a86119034efa/ Thanks, RichardYour expertise never fails to impress :)

Thanks Mr. Wang. I beleive that the reason is that, the email header info is already full of mail flow info. the diagnostic info is only a convenience to the users, and repetitious to the hackers. I think the exposure of information to the internet happens with every email, it is just not obvious. It would be nice if we could customize it some. Security has a point that its not good to tell them what version of exchange we are running. We can do some filtering with a edge transport server no?

Security is being silly, IMO. I don't know there is any good advice for you on this, but you'd probably get something more useful if you shared with us your version of Exchange. -- Ed Crowley MVP "There are seldom good technological solutions to behavioral problems." . "Richard.Stoddart" wrote in message news:41005659-7ac8-49ad-a688-b3b6a1fd9398... Thanks Mr. Wang. I beleive that the reason is that, the email header info is already full of mail flow info. the diagnostic info is only a convenience to the users, and repetitious to the hackers. I think the exposure of information to the internet happens with every email, it is just not obvious. It would be nice if we could customize it some. Security has a point that its not good to tell them what version of exchange we are running. We can do some filtering with a edge transport server no? Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."