Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

web access for outlook

Status
Not open for further replies.
jakess

jakess

Technical User
Apr 17, 2000
418
ZA
i need some info on the following:
i have installed IIS4.0 and web access for outlook on one NTserver so i can now access my mailbox through the IE browser. Unfortunately i cannot access my outlook98 mailbox through the Internet but only through our Intranet.
what other features are available and how can i solve my outlook web access problem?
i am running Exchange 5.5 sp3 on another server
 
Sort by date Sort by votes
Mke sure port 80 is open on your firewall and the nt box running iis has a public ip address if it is not public IE it is a 192****** address you will have to set up some NAT on the firewall to forward all requests for port 80 to the private address of the webserver
 
Upvote 0 Downvote
I would check out this thread thread10-64092

I would consider running OWA as a liability at this point.
I was running OWA, exchange 5.5, IIS4.0

My exchange server was hacked right over port 80. A root kit was used. They cracker was then able to take complete control of the site and then the server. HE had complete control of the server ! This went unnoticed for two weeks.

I did not catch on until two other internal NT machines where cracked from via the exploited exchange server.

I dropped OWA like a brick.

If I where you I would consider using the latest patched version of IIS. I think version 4 is plaged with issues. Don't comprimise and run IIS on your exchange server (BIG NO NO)

If had configured IIS on a seperate system, I might have been able to prevent the following.

A. reloading exchange
b. reloading two other NT boxes (PDC, BDC)

It took me two weeks to fully recover.

Be carefully, If you play with fire - you will get burned !

I am not sure if this helps
Just an FYI

-Danny






 
Upvote 0 Downvote
There are other options!

Big obvious things - rename the admin account and choose a password of more than 6 chars with punctuation in it. Don't use the obvious Administrator2 or Admin. Disable your guest account. Set your priviledges for all users and groups thoughtfully. Don't give the everyone group access to anything.

Oh and stick a big hardware firewall in between your IIS server and the Net.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

microsGuy16
  • Locked
  • Question
Global Address List Names not showing in Outlook OWA 365
Replies
0
Views
3K
microsGuy16
microsGuy16
ponoodle
  • Locked
  • Question
Disabling OWA for on prem Exchange while in a hybrid envirenment.
Replies
0
Views
2K
ponoodle
ponoodle
Rohit Bareja
  • Locked
  • Question
View and access only own records, and not the records by others on SharePoint.
Replies
3
Views
2K
garysm
garysm
m245
  • Locked
  • Question
Adding a disclaimer for all outgoing emails in Exchange 2013 Standard Edition
Replies
0
Views
2K
m245
m245
dajohnso
  • Locked
  • Question
Outlook POP3 cant connect to exchange 2007
Replies
3
Views
241
BN75
BN75

Part and Inventory Search

Sponsor

Back
Top