@bobnoordam

Category: Exchange server

Hafnium exchange server hack detection

Microsoft now actively publishes backdoors found for the Exchange server breach, see the security blog here You can download a csv file with the known filepaths, which are very easy first step to verify here Below is a very quick first response program to use that file, and scan if a known backdoor is present on your system. Compile and run it, and it will simply check each entry on the list on your system […]

Remove the outlook mobile spam from the desktop version

If you are fed up with your daily advertising banner in the desktop version of outlook pushing you to the mobile app version, here is the page detailing how to remove it. How to remove the Get and set up Outlook Mobile app on my phone option from Outlook OF COURSE you should not have to opt out of these kind of ads in your paid version, and OF COURSE it should be simple and […]

Fixing backscatter on Exchange 2010

The default installation of exchange 2010 on small organizations will use the hub transport server to handle the smtp mail. The problem with this setup is twofold, Exchange 2010 STILL uses stone gae defaults for NDR messages, and for unknown recipients by accepting any mail and then sending non deliverable reports. This opens up your server to backscatter problems. To fix this, you need two things: Exchange should never create a NDR message for external […]

Fixing backscatter on Exchange 2010

The default installation of exchange 2010 on small organizations will use the hub transport server to handle the smtp mail. The problem with this setup is twofold, Exchange 2010 STILL uses stone gae defaults for NDR messages, and for unknown recipients by accepting any mail and then sending non deliverable reports. This opens up your server to backscatter problems. To fix this, you need two things: Exchange should never create a NDR message for external […]

Exchange 2013 default receive connectors

re-creating the default receive connectors on exchange 2013 I recently ran into a server that no longer wanted to route mail and responded with PRX4 and PRX5 temporary server errors after a failed upgrade with the latest CU. These errors are attributed to dns problems, however in this case DNS was fine. Even after restoring a VM backup the problem persisted. The actual cause of the problem was a missing receive connector on port 2525, […]

Exchange 2010: Setup SMTP

Expand the organization configuration Expand hub transport Choose the tab Send Connectors Create a new send connector, with the intended use: Internet Add as address space: * Finalize the wizard SMTP mail on the server, take the following steps: Expand Server Configuration Select Hub Transport Bring up the propterties of the default receive connector Add the permissions group Anonymous users Without this you will receive a message “client not athenticated” on the smtp connection.

Exchange 2010: Old fashioned POP without TLS/SSL

If you still need to support old fashioned POP connections over port 110, you need to make the following configuration steps: Expand Server configuration Select Client Access Bring up the properties page for the POP3 connector Switch to the Authentication tabs Enable planin text logon Enable the POP3 service in the services panel, and set the startup type to automatic

Exchange 2010: Limit store memory usage

MS Exchanges store process by default uses all memory on the server and releases memory when other process require it. There is much discussion floating around about the good and the bad of this. Very generaly speaking it is a good thing if you have dedicated exchange servers, but it can be a very bad thing if you (have to) combine Exchange with HYPER-V’s dynamic memory or other intensive applications like SQL Server in small […]

Correctly configuring NDR and DNSBL on Exchange 2003

By default, your Exchange 2003 server will happily accept all mail, only to find during processing that it can not deliver certain mails. It will ony then generate a message back to the sender that the mail cannot be delivered. While this is fine for legit senders, it becomes problematic with spam. Spam generaly has a non existing or false sender address. In the first case you will end up with endless heaps of undeliverable […]

Next Page »