Penetration Testing mailing list archives

Re: [PEN-TEST] Testing MS Exchange

From: "Gallicchio, Florindo (2282)" <florindo.gallicchio () ESAVIO COM>
Date: Wed, 11 Oct 2000 16:27:56 -0400

Friends:

Here's the URL I believe Robert was referring to:

http://www.microsoft.com/TechNet/exchange/relay.asp

Florindo


-----Original Message-----
From: Robert Schwartz
To: PEN-TEST () SECURITYFOCUS COM
Sent: 10/11/00 12:31 PM
Subject: Re: [PEN-TEST] Testing MS Exchange

This is a very misunderstood subject and I see many misconfigured
servers a
lot.  This is due to poor documentation IMHO.  However, there is an
excellent doc available on the TechNet CD (not sure about the Internet
site).  There is no qbase number.  You need to query for: "Is Your
Exchange
Server Relay Secure".  As it turns out, you need to implement some
counterintuitive configuration options.  I found it very useful.  Hope
this
helps.

Current thread:

[PEN-TEST] Testing MS Exchange Stephen Quigg (Oct 11)
- Re: [PEN-TEST] Testing MS Exchange Robert Schwartz (Oct 11)
- <Possible follow-ups>
- Re: [PEN-TEST] Testing MS Exchange Gallicchio, Florindo (2282) (Oct 11)