Security

SMTP Connector Myth: Messages are always routed over SMTP Connectors with more specific address spaces

An Exchange Server message routing myth forever being propagated (including by me!): If 2 SMTP Connectors (or Send Connectors in case of Exchange Server 2007) exist, one with a more specific address space, like exchangepedia.com, and one for a more generic address space like *, messages are always routed over the Connector with the more […]

More →

Schwartz: Zero tolerance for zero retention

On the first anniversary of the Federal Rules for Civil Procedure (PDF), which provide guidelines for e-discovery, InfoWorld editor Ephraim Schwartz discusses the implications in his Reality Check column. Read more in “Zero tolerance for zero retention“.

More →

Released: ForeFront Security for Exchange SP1

ForeFront Security for Exchange SP1 follows Exchange Server 2007 SP1 out the door. FSE SP1 is compatible with Exchange Server 2007 SP1. It includes support for Windows Server 2008, IPv6, and improved content filtering. Exchange Server 2007 SP1 and ForeFront Security for Exchange – Before you upgrade Exchange Server 2007 to SP1, make sure you […]

More →

220 Welcome to a California mail server: Fighting spam with SMTP Banners

If you are interested in messaging and fighting spam, you probably watch the legal response to spam with some interest. Given the nature of email and the art of remaining anonymous or otherwise untraceable that spammers seem to have mastered, anti-spam laws were written off as largely ineffective, or even ridiculous. (The FTC begs to […]

More →

Exchange Server 2007: How many logs hath thee?

A recent question got me thinking about this, thanks to a fellow MCT. How may logs does Exchange Server 2007 have? There are the known logs, carried over from previous versions (albeit with some differences), and a slew of new logs that one deals with. So let’s take a quick look at the number of […]

More →

HOW TO: Hide Distribution Group membership

Exchange Server 2003’s extensions for Active Directory Users & Computers console made hiding a Distribution Group’s membership a trivial task, accomplished by right-clicking a group, selecting Exchange Tasks and selecting Hide Membership. Figure 1: The Exchange Tasks wizard in ADUC provides an option to hide Distribution Group membership in Exchange Server 2003 As the task […]

More →

Gmail flaw allows forwarding messages to attacker’s mailbox

As I sat watching a cool video put together by “Gmail fans” yesterday, reports of a flaw with Google’s popular web-based email service were beginning to appear. The flaw allows an attacker to create a filter to forward a victim’s messages to any email address specified by the attacker. Scary stuff – Gmail is one […]

More →

NetCraft: IIS gaining ground on Apache

Internet research firm NetCraft reports Microsoft’s IIS web server is now gaining ground on its open-source rival Apache. Out of close to 128 million web sites surveyed this month, 34.2% use IIS – an increase of 1.4%. Apache’s marketshare slipped by 1.7%, to 48.4%. More in NetCraft’s August 2007 Web Server Survey. Update:Eric Lai reports […]

More →

Outlook Anywhere and Exchange’s Self-Signed Certificate

Outlook Anywhere (known as RPC over HTTP in Exchange Server 2003), the Exchange Server + Outlook + Windows Server feature that allows Outlook clients to access Exchange servers without a VPN, does not work with Exchange Server 2010/2007’s self-signed certificate. Yes, this is different from Outlook Web Access (OWA, Outlook Web App in Exchange 2010) […]

More →

Mozilla promises to patch in 10 days

In a sign of further security goodness, Mike Shaver – Mozilla’s Director of Ecosystem Development, claims Mozilla will fix all vulnerabilities in (his own words) “10 [expletive] days“. The caveats: provided there is “responsible disclosure”, and the claim is for critical vulnerabilities. As a FireFox user, what’s troubling is the fact that Mozilla has to […]

More →

← Previous Entries

Next Entries →