Home > Microsoft Exchange Tips > Exchange Security Tips > How to enable the Exchange IMF on authenticated SMTP connections
Exchange Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

EXCHANGE SECURITY TIPS

How to enable the Exchange IMF on authenticated SMTP connections


Serdar Yegulalp
02.27.2006
Rating: -4.00- (out of 5)


Exchange Server tips, tutorials and expert advice
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


Exchange Server can communicate with other SMTP servers in one of two ways: via authenticated connections or anonymous connections.

Anonymous SMTP connections are how servers from the outside world talk to your front-end Exchange server (or whatever server you have handling external SMTP connections). They don't require any credentials. So, in theory, anyone can connect and send email.

Authenticated SMTP connections happen when another server provides credentials that the recipient server recognizes as valid, or when that other server is on a list of known-good servers validated by IP address.

Note that reverse DNS lookups or mechanisms like Sender Permitted From (SPF) aren't considered part of this picture; an Exchange server could use them, but they still wouldn't be considered authenticated connections by the above definition.

Normally, the Exchange Server Intelligent Message Filter (IMF) only runs on anonymous SMTP connections. This is because, most e-mail that needs to be filtered in this fashion will be passed through an anonymous connection, and most of the screening that needs to take place will happen immediately.

Sometimes, though, your network topology or email screening logistics won't allow this. If so, you may want to set IMF to run on authenticated SMTP connections between servers in your local Microsoft Exchange organization. For instance, if you're presorting email -- regardless of its validity as spam -- and want to perform spam-checking deeper within your organization, you could use this function.

To force the IMF to add spam confidence level (SCL) ratings to all messages sent through authenticated connections, open the registry on each Exchange server machine performing IMF filtering and navigate to HKEY_LOCAL_MACHINE\Software\Microsoft\Exchange\ContentFilter.

Within this key, create a new DWORD value named CheckAuthSessions, and set it to 1.

About the author: Serdar Yegulalp is editor of the Windows Power Users Newsletter.

Do you have comments on this tip? Let us know.

Related information from SearchExchange.com:

  • Tip: Tune up your Exchange Intelligent Message Filter with IMF Tune
  • Tip: IMFCompanion freeware fine tunes Exchange's built-in spam filter
  • Learning Guide: How to fight spam on Exchange Server
  • Step-by-Step Guide: How to use ISA Server as an SMTP filter
  • Reference Center: Spam prevention and management tips and resources
    •

    Rate this Tip
    To rate tips, you must be a member of SearchExchange.com.
    Register now to start rating these tips. Log in if you are already a member.




    Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


    RELATED CONTENT
    Exchange Security Tips
    Why you should secure Exchange 2007 using administrative policies
    Microsoft Exchange Server security dos and don'ts
    Create a journal rule in Exchange 2007 to secure journaling mailboxes
    How to protect an Exchange journaling mailbox from email spoofing
    Lock down Microsoft Outlook 2007 to prevent .PST file access
    Using Exchange Server journaling as an email-archiving solution
    Use the OWA Admin tool to 'segment' Outlook Web Access 2003 features
    Why are .PST files a security threat to Exchange Server mailboxes?
    OWA won't load after applying Exchange 2007 SP1 security patch
    Minimize remote and mobile Outlook Web Access (OWA) security risks

    Antispam Software and Spam Filtering
    Microsoft Exchange Server security dos and don'ts
    Troubleshooting Microsoft Exchange Server Event ID error 6009
    How can I configure Exchange IMF to allow an IP address or DNS?
    Tool helps identify inbound Exchange Server email flow issues
    Exchange email sent to a domain using SPF authentication is returned
    Configure SMTP relay restrictions in Exchange Server 2003 to stop spam
    Secure Edge Transport servers using the Security Configuration Wizard
    Create a global Safe Senders List in Exchange 2007 to filter spam
    Migrating antispam settings from Exchange 2003 to Exchange 2007
    The six-layered secret of effective Exchange Server email filtering
    Antispam Software and Spam Filtering Research

    SMTP
    Troubleshooting Microsoft Exchange Server Event ID error 6009
    How to lock down an SMTP relay to prevent spam in Exchange Server 2003
    Tool helps identify inbound Exchange Server email flow issues
    Configure SMTP relay restrictions in Exchange Server 2003 to stop spam
    Exchange email sent to a domain using SPF authentication is returned
    Why can't POP3 clients receive Exchange Server email?
    Exchange event sink scripting error when configuring email disclaimer
    Configure SMTP connection limits in Exchange Server 2003 and SBS
    Reconfigure an existing Exchange Server user account for a new user
    Improve Exchange 2003 Internet connectivity, mail flow and performance

    RELATED GLOSSARY TERMS
    Terms from Whatis.com − the technology online dictionary
    greylist  (SearchExchange.com)
    hash buster  (SearchExchange.com)
    image spam  (SearchExchange.com)
    KnujOn  (SearchExchange.com)
    Sender ID  (SearchExchange.com)
    spam confidence level  (SearchExchange.com)
    spamblock  (SearchExchange.com)
    spim  (SearchExchange.com)
    tarpitting  (SearchExchange.com)
    teergrube  (SearchExchange.com)

    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary

    DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.



    Email Server Solutions: Exchange 2007, Exchange 2003, Exchange 2000, SharePoint
    HomeNewsTopicsITKnowledge ExchangeTipsAsk the ExpertsMultimediaWhite PapersIT Downloads
    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    SEARCH 
    TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Site Map




    All Rights Reserved, Copyright 2004 - 2009, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts