Hi all, I have
an Exchange 2013, I saw that
from the Internet without authenticating with
Telenet commands we can email to
our domain.
This is the configuration of Receive connectors on
the CAS servers.
Defual connector Frontend <name
CAS>
[X] Transport Layer Security (TLS)
[X] Enable Domain Security
(TLS mutual authentication)
[X] Basic Authentication
[X] Offer Basic authentication
only after starting TLS
[X] Integrated Windows Authentication
[X] Exchange Server Authentication
[ ] Externally Secured
Group permissions
[X] Exchange Servers
[X] Legacy Exchange Servers
[ ] Partners
[ ] Exchange Users
[X] Anonymous Users
How I can prevent this without adversely affecting
the proper functioning of the mail system?
regards
Prevent annoying spam from your own domain in Exchange 2013
May 22nd, 2015 2:46pm
Hello
if disable anonymous you cant get email from outside /gmail, your partner company, etc...../
if not need spam need install spam filter
or if you have got a list who is send email to your organization, list all sender ip in scope in the receive conector but I don't think is valid scena
Free Windows Admin Tool Kit Click here and download it now
May 22nd, 2015 3:17pm
Thanks Sneff, I have seen that some people Exhange 2010/2007 applies the following command
Get-ReceiveConnector "default frontend <server name>" | Get-ADPermission -User "NT Authority \ Anonymous Logon" | where {$ _. ExtendedRights-like "ms-Exch-SMTP-Accept-authoritative-domain-sender"} | Remove-ADPermission
Is this true for Exchange 2013? Will it affect the normal operation of mail?
regards
Get-ReceiveConnector "default frontend <server name>" | Get-ADPermission -User "NT Authority \ Anonymous Logon" | where {$ _. ExtendedRights-like "ms-Exch-SMTP-Accept-authoritative-domain-sender"} | Remove-ADPermission
Is this true for Exchange 2013? Will it affect the normal operation of mail?
regards
May 23rd, 2015 4:11am