SMTP greylisting problem on Exchange Server 2003 SP2

"Greylisting" is a relatively new spam-fighting technique that filters out spam by causing the first delivery attempt from any given mail server to fail. Since most spam servers are too busy trying to crank through a delivery queue of hundreds of thousands of email messages, they don't tend to retry. A legit mail server will retry after a certain interval.

The SMTP greylisting problem on Exchange Server 2003 SP2 is extremely bad news if you're delivering email regularly to other servers that implement greylisting, since it could mean a lot of email stacking up in your SMTP queues and not getting sent.

So far, there appear to be three workarounds:

People have theorized that the glitch retry interval mechanism may not work under certain conditions unless the timeouts are explicitly set in the registry.

To do this, create the DWORD value GlitchRetrySeconds in HKLM\System\CurrentControlSet\
Services\SMTPSVC\Queuing (you may need to create this key as well) and set it to 60. Then, stop and restart the SMTP service. Some folks have reported getting good results with values up to 120 seconds as well.

Note that the GlitchRetrySeconds value is usually set lower, to prevent massive amounts of email messages from queuing up. If conditions gets

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Antispam Software and Spam Filtering Problems with email spoofing on SBS 2003 Exchange Insider e-zine Securing your Exchange Server 2007 journaling archives Microsoft Exchange Server security dos and don'ts Troubleshooting Microsoft Exchange Server Event ID error 6009 How can I configure Exchange IMF to allow an IP address or DNS? Tool helps identify inbound Exchange Server email flow issues Configure SMTP relay restrictions in Exchange Server 2003 to stop spam Exchange email sent to a domain using SPF authentication is returned Secure Edge Transport servers using the Security Configuration Wizard Antispam Software and Spam Filtering Research Microsoft Exchange Server 2003 Configuring the default recipient policy in an Exchange 2003 environment Removing old disclaimers from Exchange Server 2003 ExMerge gotchas to watch for when migrating Exchange 2003 mailboxes Recovering deleted items after an Exchange 2003 migration Linking two Exchange 2003 servers in different forests Microsoft Exchange Server virtualization tutorial Installing Exchange Server 2003 and a domain controller on the same hardware Migrating new users onto Exchange Server 2003 Can Exchange 2003 and Exchange 2007 live on the same domain? Why Exchange Server 2003 and a BES shouldn't share a domain controller Microsoft Exchange Server 2003 Research SMTP Exchange users receiving email addressed to legacy users Configure BES to direct email from a new domain email address Troubleshooting Microsoft Exchange Server Event ID error 6009 How to lock down an SMTP relay to prevent spam in Exchange Server 2003 Tool helps identify inbound Exchange Server email flow issues Configure SMTP relay restrictions in Exchange Server 2003 to stop spam Exchange email sent to a domain using SPF authentication is returned Why can't POP3 clients receive Exchange Server email? Exchange event sink scripting error when configuring email disclaimer Configure SMTP connection limits in Exchange Server 2003 and SBS

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary greylist  (SearchExchange.com) hash buster  (SearchExchange.com) image spam  (SearchExchange.com) KnujOn  (SearchExchange.com) Sender ID  (SearchExchange.com) spam confidence level  (SearchExchange.com) spamblock  (SearchExchange.com) spim  (SearchExchange.com) tarpitting  (SearchExchange.com) teergrube  (SearchExchange.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

worse across the board when you put this fix into place (you may want to give it a few days to see how it plays out), chances are something else may be causing a bottleneck.

About the author: Serdar Yegulalp is editor of Windows Insight, a newsletter devoted to hints, tips, tricks, news and goodies for all flavors of Windows users.

MEMBER FEEDBACK TO THIS ANTISPAM TIP

Thank you for the article on greylisting. We have been having some issues within the past several weeks that this article seems to explain perfectly.

Keep up the good work…
—David J.

******************************************

What about the hotfix from Microsoft? It also looks like a call to PSS could solve the issue. The following Microsoft KB article has more information, too:

On a Windows Server 2003-based SMTP gateway server, some messages may remain in the queue folder until the SMTP service is restarted.

We use XWall with Exchange 2003 for all of our SMTP email, so we do not have this problem. I guess that could be considered a workaround as well.
—Mike S.

******************************************

I have the same issue. Restarting the SMTP service resends the 'queued' messages again and again. It is not a valid option, since too many messages get resent.
—Ron B.

Do you have comments on this tip? Let us know.

Please let others know how useful this tip was via the rating scale below. Do you know a helpful Exchange Server, Microsoft Outlook or SharePoint tip, timesaver or workaround? Email the editors to talk about writing for SearchExchange.com.

Rate this Tip To rate tips, you must be a member of SearchExchange.com. Register now to start rating these tips. Log in if you are already a member. DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.