|
Home > Archive > IIS and SMTP > October 2006 > Stopping Open Relay in IIS 6.0
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Stopping Open Relay in IIS 6.0
|
|
| joatman71 2006-10-23, 7:21 pm |
| I am using IIS 6.0 on a Windows 2003 Server for incoming and outgoing
email. I need to accept anonymous incoming email destined for the
server and allow all outgoing email originating from that server. When
I have SMTP turned on I immediately start getting hundreds of relay
messages, some of which are relayed.
I allow anonymous authentication, and in the relay restrictions section
I am granting relay rights to only a few private (internal) IP
networks. I am also allowing all computers which successfully
authenticate to relay. I turned this off and had the same problem
though.
Everything looks right to me, but I still see relay messages going out,
not to mention thousands of messages that get put into the bad mail
directory.
Are there known bugs or message formats that get around relay
restrictions? Am I not set up correctly?
| |
| Dr. Network 2006-10-23, 7:21 pm |
| Try setting the relay filter to just relay 127.0.0.1.
"joatman71" <brassfoley@gmail.com> wrote in message
news:1161276613.063714.140500@i42g2000cwa.googlegroups.com...
>I am using IIS 6.0 on a Windows 2003 Server for incoming and outgoing
> email. I need to accept anonymous incoming email destined for the
> server and allow all outgoing email originating from that server. When
> I have SMTP turned on I immediately start getting hundreds of relay
> messages, some of which are relayed.
>
> I allow anonymous authentication, and in the relay restrictions section
> I am granting relay rights to only a few private (internal) IP
> networks. I am also allowing all computers which successfully
> authenticate to relay. I turned this off and had the same problem
> though.
>
> Everything looks right to me, but I still see relay messages going out,
> not to mention thousands of messages that get put into the bad mail
> directory.
>
> Are there known bugs or message formats that get around relay
> restrictions? Am I not set up correctly?
>
| |
|
|
You should not allow any computer that authenticates to relay, and you
should look into what ip's you allow, don't allow complete subnets.
It's also possible you have an issue with ndr attacks, where the spammer
sends to invalid emails on your server and then the ndr is sent out to
whatever the reply-to in the spammers email was set to, download this script
to make that stop:
http://www.lundin.info/filterrecipients.aspx
KL.
"joatman71" <brassfoley@gmail.com> skrev i meddelandet
news:1161276613.063714.140500@i42g2000cwa.googlegroups.com...
>I am using IIS 6.0 on a Windows 2003 Server for incoming and outgoing
> email. I need to accept anonymous incoming email destined for the
> server and allow all outgoing email originating from that server. When
> I have SMTP turned on I immediately start getting hundreds of relay
> messages, some of which are relayed.
>
> I allow anonymous authentication, and in the relay restrictions section
> I am granting relay rights to only a few private (internal) IP
> networks. I am also allowing all computers which successfully
> authenticate to relay. I turned this off and had the same problem
> though.
>
> Everything looks right to me, but I still see relay messages going out,
> not to mention thousands of messages that get put into the bad mail
> directory.
>
> Are there known bugs or message formats that get around relay
> restrictions? Am I not set up correctly?
>
|
|
|
|
|