Tip

Handling excessive amounts of Non-Delivery Reports

When mass Spam or virus mailings flood the Internet, many are sent with randomly generated addresses. When these e-mails invariably do not reach the destination mailbox, Exchange servers send a non-delivery report (NDR).

The NDR messages notify the sender that a message was not received. This seems like a useful feature, except that lately Spammers and virus writers are spoofing the From fields of either Spam e-mails or contaminated e-mails.

An example of the above situation occurred a few weeks ago when the MyDoom virus sent e-mails to randomly generated addresses with spoofed From fields and these addresses were bombarded with NDRs. This accounted for a large portion of Internet traffic created by the virus.

The solution to this problem is to simply turn the NDRs off. This is doable if you are running Exchange server 2003 or 2000 (

    Requires Free Membership to View

"see KB article 294757"). But if you are still using Exchange 5.5, though there are reports of a way to "Disable Automatic Replies to the Internet," it doesn't actually stop sending NDRs. To compound this problem, Exchange Server 5.5 is in the "extended support phase," so no non-security fixes are available.

Turning the NDRs off actually violates RFC 821, so this seems to be a "between a rock and a hard place" sort of problem.

Beyond that, Microsoft's official position is that you should upgrade to Exchange 200x, but since this requires Active Directory installation, it is a non-trivial migration. If you, like many others, are still using Exchange 5.5, you might want to contact Microsoft to lobby for a fix to this problem, as more mass-mailing viruses are sure to strike.


This was first published in February 2004

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.