Hi,
I'm getting the following message from a network security scan (seems to be in linux terminology), does anyone know what I need to do in windows 2003 to stop this and what does it mean please?
RESULT -
"It is possible to enumerate the names of valid users on the remote host. Description : The remote SMTP server answers to the EXPN and/or VRFY commands. The EXPN command can be used to find the delivery address of mail aliases, or even the full name of the recipients, and the VRFY command may be used to check the validity of an account. Your mailer should not allow remote users to use any of these commands, because it gives them too much information."
MY SETTINGS CURRENTLY ARE
Access -> Authentification -> intergrated windows authentification
Access -> Connection -> only the list below with my server ip
Access -> Relay Restrictions -> only the list below with my ip
delivery -> outbound security -> intergrated windows security on
Thanks in advance
gavin
I'm getting the following message from a network security scan (seems to be in linux terminology), does anyone know what I need to do in windows 2003 to stop this and what does it mean please?
RESULT -
"It is possible to enumerate the names of valid users on the remote host. Description : The remote SMTP server answers to the EXPN and/or VRFY commands. The EXPN command can be used to find the delivery address of mail aliases, or even the full name of the recipients, and the VRFY command may be used to check the validity of an account. Your mailer should not allow remote users to use any of these commands, because it gives them too much information."
MY SETTINGS CURRENTLY ARE
Access -> Authentification -> intergrated windows authentification
Access -> Connection -> only the list below with my server ip
Access -> Relay Restrictions -> only the list below with my ip
delivery -> outbound security -> intergrated windows security on
Thanks in advance
gavin