Jim
Sat Aug 14 18:22:01 CDT 2004
I cannot remember all the clicks Wayne mentioned. I think you make
sure that the only ips listed in the server are the internal and
external. I think you do not have to list the external because ISA
forwards stuff to the internal ip. Test to confirm. When I did a
google search I see that some have mentioned the only ip that needs to
be listed is the internal ip. If you are on a spammer list you are
going to keep seeing that crud.
I made a batch file that deletes all those bad mail files every day.
One less thing to remember to do.
http://support.microsoft.com/?id=324958 for queue cleanup.
"SpenserJ" <spenserj87@yahoo.com> wrote:
>One more thing to add. If I look in the Mailbox Store under Logons I see a
>bunch of logins with the user name SMTP (SERVER01--{7E320B21-BD22-.....})
>and the Windows 2000 Account shows NT AUTHORITY\SYSTEM. Is this anything
>related?
>
>
>"SpenserJ" <spenserj87@yahoo.com> wrote in message
>news:411e5195$1_3@corp.newsgroups.com...
>> Yes, I keep deleting files from the badmail folder. I have a router and
>> two NICs and the only open ports on the router are 47, 25, 443, 1723. In
>> the Default SMTP Virtual Server I see a bunch of "spammers" in the queue
>> and I'll see IPs pop up in the Current Sessions. I have all guest and
>> other user accounts disabled. I can't see a login entry that tells me who
>> could be authenticating a username and password - my system only has 5
>> user accounts. The Adminsitrator account is renamed. I really don't
>> understand how they are getting in.
>>
>> DJ
>> "Jim Behning" <jimbehningmvp@atl.mindspring.com> wrote in message
>> news:7kfsh0d65h7kont0920m4n3abpn783bsv2@4ax.com...
>>> Have you gone to Wayne's website www.sbsfaq.com ? He had an article
>>> there that told you how he set up his server. I clear the checkmark
>>> for alllow all authenticated users to relay. You would only need this
>>> if you expect your outside users to treat your Exchange server like
>>> you were an isp.
>>>
>>> Make sure every user has a complex password of at least 8 characters.
>>> You can do this from the group policy. Rename the guest account and
>>> make sure it is disabled. Some even rename the administrator account
>>> but I have not. Make sure the administrator password has been changed.
>>> Make the users all change their passwords.
>>>
>>> Are you actualy seeing stuff in the badmail folder?
>>>
>>> "SpenserJ" <spenserj87@yahoo.com> wrote:
>>>
>>>>I have searched this site and smallbizserver.net - and used a few MS KB
>>>>articles to resolve what appears to be a relay problem on my server. I
>>>>recently set up OWA using SSL. All of a sudden I'm getting 100 non
>>>>deliverable messages each day. I have followed the steps to turn off
>>>>relaying on the server and yet I can still see IPs pop up in the Current
>>>>Sessions section of the Default SMTP Virtual Server. I have turne on max
>>>>logging and I don't see anyone logging in. I can't figure out how to
>>>>stop
>>>>this. I stopped the Default SMTP Virtual Server until I can figure it
>>>>out -
>>>>will this prevent relaying?
>>>>
>>>>DJ
>>>>
>>>>
>>>>
>>>>
>>>>-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
>>>>
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
>>>>-----== Over 100,000 Newsgroups - 19 Different Servers! =-----
>>>
>>> Jim B. SBS MVP
>>> remove the mvp to send email
>>
>>
>>
>>
>> -----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
>>
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
>> -----== Over 100,000 Newsgroups - 19 Different Servers! =-----
>
>
>
>
>-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
>
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
>-----== Over 100,000 Newsgroups - 19 Different Servers! =-----
Jim B. SBS MVP
remove the mvp to send email