Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Exchange HELO security question 2

Status
Not open for further replies.
Topkapi

Topkapi

IS-IT--Management
Sep 4, 2001
97
GB
I've just started doing some work for a small company which recently installed SBS2003. They have a very basic ADSL router set up to forward SMTP traffic to the server. If I telnet on port25 to the external IP of the router I see the same response as if I do it on the LAN.This shows pretty full information i.e. that it is an Exchange server, its version number etc.

Is possible to change/restrict this HELO info as I imagine this is potentially useful to spammers, hackers etc.

Thanks in advance
 
Sort by date Sort by votes
I must need to improve my "Googling" skills.

Have a star!

Thanks
 
Upvote 0 Downvote
No problem, I guess the key word is "banner", which might not be obvious unless you were already aware!

Carlsberg don't run I.T departments, but if they did they'd probably be more fun.
 
Upvote 0 Downvote
Don't change the ehlo banners unless you want to increase support costs when dealing with PSS. There is really no reason to change that.

Pat Richard, MCSE MCSA:Messaging CNA
Microsoft Exchange MVP
Want to know how email works? Read for yourself -
 
Upvote 0 Downvote
Hi Pat

Your reply seems to imply that the article on MSExchange.org is inherently risky. If so can you please explain why.

Also why do you not believe that, if implemented correctly,that the result would be beneficial?

Grateful for any extra insight.

Thanks
 
Upvote 0 Downvote
Changing the banner does nothing for security. Knowing a version number doesn't show which hotfixes are installed. Or what IMF options are enabled. It merely makes troubleshooting harder.

And, as the article mentions, POP3 and IMAP are disabled by default, (and should be kept that way).

Keeping the server up to date with security patches, as well as a correctly tuned firewall will go MUCH further than merely masking a version number.

Pat Richard, MCSE MCSA:Messaging CNA
Microsoft Exchange MVP
Want to know how email works? Read for yourself -
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

T
  • Locked
  • Question
How to use third party mail security gateway to scan internal/inter-domain mails in Exchange On-Premise?
Replies
3
Views
2K
DrB0b
DrB0b
PatrickRoggers
  • Locked
  • Helpful tip
Safest Way to Import PST file into Exchange Online
Replies
0
Views
2K
PatrickRoggers
PatrickRoggers
ComputersUnlimited
  • Locked
  • Question
Migrating to Exchange 2019
Replies
0
Views
2K
ComputersUnlimited
ComputersUnlimited
Brent Fletcher
  • Locked
  • Question
Exchange rule to remove "✉" icon when it appears in a subject title from a supplier
Replies
0
Views
2K
Brent Fletcher
Brent Fletcher
stanlyn
  • Locked
  • Question
How to do Certificates on MultiDomain Exchange with Least Cost
Replies
1
Views
2K
Wesaf
Wesaf

Part and Inventory Search

Sponsor

Back
Top