Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Open Relay - should I be concerned?

Status
Not open for further replies.
pinkfloyd65

pinkfloyd65

MIS
Jun 2, 2003
39
0
0
US
I've been tasked with deploying iVantage, a software for our HR Dept. One of the requirements is to setup an SMTP virtual server in order to enable routing and alerts from iVantage.
My concern is that this will in fact be akin to having an open relay on my Exchange 2003 mail server which will expose our network to Spam attacks and get our domain black listed.
Are my concerns valid? Should I demand that the vendor comes up with a different solution for enabling alerts or do I worry too much?
Your input is greatly appreciated.
 
Sort by date Sort by votes
Does this iVantage software run locally on your internal network or is it going to be outsourced?
 
Upvote 0 Downvote
Seems like an odd setup - why would iVantage require such a thing? i.e. why couldn't they simply forward alerts, etc to a destination address that you specify?
 
Upvote 0 Downvote

mofusjtf[\b]: iVantage will run locally on my network; in fact I am dedicating a server to this application which depends on SQL Server and IIS in order to work.

texnut[\b]: That's exactly what I was thinking...Their recommendation is to install the SMTP virtual server on the same server where SQL will run (since I am dedicating a server to this thing, all will be running from one machine) and when I objected to this move, they recommended to "secure" the relay by having it receive email only from that particular internal server.

Still, my concern is that IP addresses can be easily spoofed.

What do you think?

Thanks for the input.
 
Upvote 0 Downvote
If you're only accepting mail in Exchange from an INTERNAL IP address, where is the concern?

Pat Richard, MCSE MCSA:Messaging CNA
Microsoft Exchange MVP
Want to know how email works? Read for yourself -
 
Upvote 0 Downvote

The concern is whether I am not needlessly creating one more path for possible attacks (like smurf attacks, for example) by having an open relay on my mail server. Injecting packets into the network with forged IP source addresses is but one way to "fool" the relay into thinking that it is accepting mail from legitimate sender.

In your opinion I shouldn't worry about this? I'm getting conflicting opinions and would like to be able to come to an educated decision.
 
Upvote 0 Downvote
I would hardly classify a server that's accepting SMTP email from one INTERNAL address to be an open relay.

You should be fine.

Pat Richard, MCSE MCSA:Messaging CNA
Microsoft Exchange MVP
Want to know how email works? Read for yourself -
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

PatrickRoggers
  • Locked
  • Helpful tip
Safest Way to Import PST file into Exchange Online
Replies
0
Views
575
PatrickRoggers
PatrickRoggers
microsGuy16
  • Locked
  • Question
Global Address List Names not showing in Outlook OWA 365
Replies
0
Views
651
microsGuy16
microsGuy16
Brent Fletcher
  • Locked
  • Question
Exchange rule to remove "✉" icon when it appears in a subject title from a supplier
Replies
0
Views
572
Brent Fletcher
Brent Fletcher
DrB0b
  • Locked
  • Question
Moved to 365 in cloud, cannot get iPhones default mail app to connect
Replies
2
Views
528
Priyanka_Chauhan
Priyanka_Chauhan
DrB0b
  • Locked
  • Question
Issue removing large deleted items folder's contents
Replies
1
Views
493
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top