SMTP Security

[pmidwest]

Dose anyone have or know where I can get info on securing port 25?
And or Microsoft Exchange 5.5?

In a post I found on another site:

Quote:
SMTP servers (esp. sendmail) are one of the favorite ways to break into systems because they must be exposed to the Internet as a whole and e-mail routing is complex (complexity + exposure = vulnerability).

And I would like to get any info I can to point me in the right direction to getting this port as tight as possible.

Any help would be greatly appreciated.

Thanks in advance.

Paul

 

[SteveTheGeek]

IMHO, there isn't much exposure in port 25 via SMTP, other than being an open mail relay, or the risks inherent in email (primarily viruses). Microsoft has a series of papers on closing it as an open relay, or you might check the Exchange 5.5 board here in TekTips.
-Steve

 

[peterve]

in fact, there are quite a few exploits in SMTP engines, make sure the smtp server is patched, make sure all hotfixes are applied
If you want to check your smtp server for open relays,
download the openrelay tool from

http://kickme.to/dpsecurity

(under tools section) --------------------------------------------------------------------

http://kickme.to/dpsecurity

--------------------------------------------------------------------
How can I believe in God when just last week I got my tongue caught in the roller of an electric typewriter?
---------------------------------------------------------------------

 

[PHO3NIX]

If you wish to add very stringent controls over port 25 i would suggest you looked into the mailwalls on the market. Macafee suggest that their E250 appliance might help allthough i have found the Borderware MXtreme has a very high EAL rating and it is government approved. Using a mail wall will also enable you to filter mail for spam and strip attachments for viruses.