Re: security risk of opening port 25

From: "Steve Riley [MSFT]" <steve.riley@xxxxxxxxxxxxx>
Date: Tue, 25 Sep 2007 19:52:42 -0700

So long as your rule allows SMTP only from your ISP, I don't see any additional risk. You will, of course, need SMTP server software running, which is part of IIS. We have some information on administering SMTP here: http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/e4cf06f5-9a36-474b-ba78-3f287a2b88f2.mspx?mfr=true

--
Steve Riley
steve.riley@xxxxxxxxxxxxx
http://blogs.technet.com/steriley
http://www.protectyourwindowsnetwork.com

<guy@xxxxxxxxx> wrote in message news:1190738684.746365.186720@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Hi,

currently we collect our mail from the ISP using POP to our email
server. I want to start using direct SMTP. However this server is
our only server and has Active Directory, Sage, works data etc etc on
it.

What are the security implications of setting port forward on the
router to this server for SMTP traffic.

Regards,

Guy Lowin

References:
- security risk of opening port 25
  - From: guy

Prev by Date: security risk of opening port 25
Next by Date: Re: help you get the best bp servers and mailing servers
Previous by thread: security risk of opening port 25
Index(es):
- Date
- Thread

Relevant Pages

RE: SMTP Stopped working
... I think we need to find out whether your ISP is actually going to forward ... to the intended relay server. ... You mentioned that Outlook and Outlook Express work. ... When testing with Outlook Express are you providing the ISP's SMTP server? ...
(microsoft.public.exchange.connectivity)
Re: SBS2003 - Exchange config
... > forget about forwarding all of your email to your ISP? ... > inbound email will simply sit on the ISP's mail server ... >>SMTP smart host does a lot of other things, ...
(microsoft.public.windows.server.sbs)
Re: Is this to say email source is not all it is cracked up to be?
... power to force the relevant ISP to look it up. ... because these aren't SMTP connections. ... email is the IP address of the web server providing this service. ... Lastly, once they find the person, there may not be laws in that person's ...
(microsoft.public.security)
Re: Is this to say email source is not all it is cracked up to be?
... > power to force the relevant ISP to look it up. ... because these aren't SMTP connections. ... > SMTP email headers can be forged, IMHO this isn't the largest problem here. ... > email is the IP address of the web server providing this service. ...
(microsoft.public.security)
Re: Need some (lots) of help on SBS 2003
... with 3 PCs connected to an SBS 2003 server. ... turned off the SMTP service at least to get a bit of head room. ... ISP provides email via POP.blahdeblah.com & SMTP.blahdeblah.com. ... What I want to do is either a) change the exchange server to use the ...
(microsoft.public.windows.server.sbs)