I just read your response to an Exchange spam question, and you state "the Exchange Internet Mail Service must be manually configured to reject any e-mail message that does not have a valid recipient on this server." I use Exchange 5.5. Would you be willing to forward more specific information? I don't see your suggestion as a selection.
There is a "best practices" setting for the Internet Mail Service that are not enabled by default, but are key in preventing sapm and other mail-relaying offenses:
In the Property sheet for the Internet Mail Service, go to the 'Routing' tab. Under 'Routing Restrictions,' you will see the option to "Specify the hosts and clients that can route mail when the following conditions are met:." Place a check-mark next to "Hosts and clients that successfully authenticate." This will ensure that only SMTP mail that originates from a legitimate user account on your server will be permitted to route Internet mail. All usual caveats and warnings about making configuration changes to a production server apply.
Dig deeper on Enterprise Infrastructure Management
Related Q&A from Laura E. Hunter
Active Directory expert Laura E. Hunter offers some advice for changing the IP addresses of domain controllers.continue reading
A Windows administrator moving from Windows Server 2003 to Windows Server 2003 R2 wants to perform a restore of a previous server to a new one ...continue reading
An admin has two domains and two Active Directories. He wants to know how to join the Active Directories so that internal staff can access both, but ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.