Configure SMTP relay restrictions in Exchange Server 2003 to stop spam

Find out how to configure SMTP relay restrictions in Exchange Server 2003 to stop your Exchange server from sending massive amounts of spam email.

Richard Luckett, Learn IT Solution Group LLC

Published: 12 Sep 2008

Exchange Server 2003 is sending out massive amounts of spam. Is there a way I can stop this from happening? I have already scanned all the PC and server equipment for viruses.

In Exchange System Manager (ESM), I see 4,567 queues followed by non-delivery reports (NDRs).

First, make sure that the default SMTP relay settings have been applied to your Exchange 2003 servers per Microsoft's article on how to configure SMTP relay restrictions. If your Exchange server is still sending spam, then you should disable all authentication methods except for "anonymous" on your Internet-facing SMTP host. By default, anonymous authentication, will allow messages to be sent, but not relayed.

If outbound spam remains a problem, then the spam is coming from one of your internal hosts. You may consider resetting all passwords in your Exchange organization to regain control over the SMTP relaying, or reset the Relay Restrictions tab to "Allow all computers which successfully authenticate to relay, regardless of the list above."

For more information, read Microsoft's article, Stop Exchange Server spam from the inside by locking down SMTP.

Do you have comments on this Ask the Expert Q&A? Let us know.

Ask an Exchange Server question in our forum.

Dig Deeper on Exchange Server setup and troubleshooting

How is internal mail channeled through an enterprise firewall? WIth public mail servers located in a DMZ, what keeps a firewall from stopping an organization's internal mail? Network security expert Mike Chapple explains how an SMTP relay server coordinates email transmissions.

Issue #2: SMTP virtual server and connector configuration Best Practices Guide: The 10 most common Exchange Server issues and how to avoid them -- part 2 of 10.

'You do not have permission to send to this recipient' errors Learn how to diagnose and resolve 'You do not have permission to send to this recipient' Exchange Server non-delivery reports caused by 5.7.1 or 5.7.3 errors.

Locking down SMTP in Win2K and Server 2003 Weaknesses in your SMTP service configuration can pave the way for DoS attacks and spammers. Contributor Jonathan Hassell recommends locking down the service with these configuration changes to secure your mail services and limit the impact of spam.

Four ways to secure SMTP servers and improve performance Weaknesses in your SMTP configuration can pave the way for DoS attacks and spammers. Discover four ways to secure SMTP services and limit spam.

Should you turn off your network's outbound SMTP (port 25)? If you have an Exchange server that's allowed to open outbound SMTP connections in your network, should you block port 25 everywhere else in your network, since it's not really needed? The short answer is yes, and here are some good justifications:

Related Q&A from Richard Luckett

Why is there an Outlook folder missing from Outlook Web App?

Some folders in a mailbox on Exchange Server 2013 are not showing up on the folder list in the OWA virtual directory but do appear in other views. Continue Reading

Why won't the Exchange 2013 Edge Transport Server install?

We have a Client Access Server and Mailbox Server on Exchange 2013 and we want to install an Edge Transport role on another machine. I joined the ... Continue Reading

How do I configure Outlook Anywhere for specific external use?

How can I enable Outlook Anywhere to allow internal use for all users and external use for only some users in Exchange 2013? Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Windows Server experts

View all Windows Server questions and answers

SearchServerVirtualization

Learn to integrate VMs and containers in your data center

The VMs vs. containers debate is popular among admins, but integrations of the two technologies have begun to emerge with the ...

Dockerfile commands for containerizing applications

Admins can use Dockerfiles to containerize their applications and ease deployment. They can implement several commands to help ...

VMware vSphere monitoring ensures system health, performance

Admins can monitor their vSphere environments with tools such as vSphere Web Client and vSphere health service, which provide ...

SearchCloudComputing

Review these Azure Service Bus best practices

When applications talk, you need to listen. Learn about Microsoft's cloud messaging service, its main features, best practices to...

Instill cloud change management best practices

Automation is essential to change management in the cloud. Discover the best practices that ensure your IT team is in sync and ...

How much cloud does an IT disaster recovery plan need?

It's not easy to get the right mix of traditional and cloud-based DR resources. Here's how to strike a balance between what's ...

SearchSQLServer

SQL Server database design best practices and tips for DBAs

Good database design is a must to meet processing needs in SQL Server systems. In a webinar, consultant Koen Verbeeck offered ...

SQL Server in Azure database choices and what they offer users

SQL Server databases can be moved to the Azure cloud in several different ways. Here's what you'll get from each of the options ...

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

In this book excerpt, you'll learn LEFT OUTER JOIN vs. RIGHT OUTER JOIN techniques and find various examples for creating SQL ...

SearchEnterpriseDesktop

Windows 10 issues top list of most read stories for IT pros

IT pros seemed focused on the latest Microsoft OS, based on our most read stories for 2019. That may not come as a surprise, ...

How to fix printer problems after a Windows 10 update

Windows 10 updates, especially an update to Windows 10 version 1809, can sometimes cause printer issues. You can fix these ...

HP rolls out new remote workstation product ZCentral

Key components of ZCentral include Z by HP rack-mounted workstations, ZCentral Remote Boost software and proprietary ZCentral ...

SearchVirtualDesktop

VMware vs. Citrix: VDI security showdown

When it comes to VDI, Citrix and VMware are the two biggest players in the market. But which platform offers more security? Find ...

Understand VDI market shifts from traditional VDI to cloud

As the VDI market shifts to cloud-based VDI and DaaS, it's important to understand the bigger picture. Understand the benefits ...

Compare offerings from 3 major desktop-as-a-service providers

Three desktop-as-a-service providers, Citrix, VMware and Microsoft, all offer virtual desktops as a part of their cloud services....

Configure SMTP relay restrictions in Exchange Server 2003 to stop spam

Find out how to configure SMTP relay restrictions in Exchange Server 2003 to stop your Exchange server from sending massive amounts of spam email.

Dig Deeper on Exchange Server setup and troubleshooting

Related Q&A from Richard Luckett

Why is there an Outlook folder missing from Outlook Web App?

Why won't the Exchange 2013 Edge Transport Server install?

How do I configure Outlook Anywhere for specific external use?

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchServerVirtualization

Learn to integrate VMs and containers in your data center

Dockerfile commands for containerizing applications

VMware vSphere monitoring ensures system health, performance

SearchCloudComputing

Review these Azure Service Bus best practices

Instill cloud change management best practices

How much cloud does an IT disaster recovery plan need?

SearchSQLServer

SQL Server database design best practices and tips for DBAs

SQL Server in Azure database choices and what they offer users

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

SearchEnterpriseDesktop

Windows 10 issues top list of most read stories for IT pros

How to fix printer problems after a Windows 10 update

HP rolls out new remote workstation product ZCentral

SearchVirtualDesktop

VMware vs. Citrix: VDI security showdown

Understand VDI market shifts from traditional VDI to cloud

Compare offerings from 3 major desktop-as-a-service providers

Dig Deeper on Exchange Server setup and troubleshooting

Related Q&A from Richard Luckett

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.