RE: Protecting an Exchange server?

From: Kurt (kurtbuff_at_spro.net)
Date: 05/14/04

  • Next message: Michael LaSalvia: "RE: INSTALLING MYSQL PHP"
    To: "'Mark G. Spencer'" <mspencer@evidentdata.com>, <security-basics@securityfocus.com>
    Date: Fri, 14 May 2004 13:48:09 -0700
    
    

    You're on the right track.

    google for 'advosys.ca postfix spamassassin', and you'll get the bonus
    of having a very nice anti-spam filter as well.

    -----Original Message-----
    From: Mark G. Spencer [mailto:mspencer@evidentdata.com]
    Sent: Thursday, May 13, 2004 10:52
    To: security-basics@securityfocus.com
    Subject: Protecting an Exchange server?

    Hello,

    I'm wondering if there is any way to locate an Exchange server on my
    internal network and place some kind of email appliance on our DMZ to
    actually send and receive email to the world and to the Exchange server
    on
    my internal network?

    Basically, I don't want my Exchange server to be accessible to the world
    in
    any way.

    So ..

    Internet -> My Email Appliance -> Firewall -> Exchange Server

    I envision setting up a dedicated route in the firewall between the
    email
    appliance out on the Internet and my Exchange server behind the firewall
    on
    my local network?

    Are there any email appliances that can work with Exchange in this way?
    It's my (limited) understanding that Exchange server can't "pop" to
    another
    email server to pull each Exchange users email, so I'm not sure exactly
    how
    or if my plan could be put into action.

    Thanks,

    Mark

    ------------------------------------------------------------------------

    ---
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
    off
    any course! All of our class sizes are guaranteed to be 10 students or
    less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of
    in-the-field
    pen testing experience in our state of the art hacking lab. Master the
    skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ------------------------------------------------------------------------
    ----
    ---------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
    any course! All of our class sizes are guaranteed to be 10 students or less 
    to facilitate one-on-one interaction with one of our expert instructors. 
    Attend a course taught by an expert instructor with years of in-the-field 
    pen testing experience in our state of the art hacking lab. Master the skills 
    of an Ethical Hacker to better assess the security of your organization. 
    Visit us at: 
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ----------------------------------------------------------------------------
    

  • Next message: Michael LaSalvia: "RE: INSTALLING MYSQL PHP"

    Relevant Pages

    • RE: Removing Local Admin Rights...
      ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)
    • RE: Minimum password requirements
      ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)
    • Betr.: RE: fax software in the domain
      ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... pen testing experience in our state of the art hacking lab. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)
    • RE: HIPAA_Compliance
      ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)
    • RE: Cisco CSA
      ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)