Patches to stop Nimda reduced Exchange 5.5's capability 2

[IHUDDLES]

to have users "access email from the web".

Whatever IIS functions were exploited by Nimda also allowed that very useful feature of checking corporate email through a web address.

Anyone know how to remain protected from Nimda and still turn that feature back on?

 

[yizhar]

HI!

Try to reapply latest Exchange Service Pack to fix Outlook Web Access.
However it is recommended to remove IIS from your Exchange server, and install it on a different server (even a simple pentium workstation will do).

I know that Outlook Web Access can work after applying SP6a and the SRP from Microsoft. Maybe you have tried the IIS lockdown tool and this caused the problems, or maybe the website was corrupt by the virus (and not by the fix) and therefor reapplying Exchange SP4 might fix it.

Bye
Yizhar Hurwitz

http://come.to/yizhar

http://teachers.sivan.co.il/yizhar

 

[IHUDDLES]

Thx! This will definitely be the direction we need to go!

 

[Xybertron]

IIS Lockdown Tool must be run without Automatic config on Exchange servers. Run again and choose undo.

MS01-044 will protect you from Code Red and Nimda. Dan
Microsoft Exchange Support @ Microsoft