RE: Authenticated Outgoing Mail

  • From: "Carl Houseman" <c.houseman@xxxxxxxxx>
  • To: "'[ExchangeList]'" <exchangelist@xxxxxxxxxxxxx>
  • Date: Thu, 15 Sep 2005 20:46:47 -0400

Are you finding this "'must' require SMTP auth" in RFC 2476?
 
It's not there in the one I'm reading.
http://www.faqs.org/rfcs/rfc2476.html
 
Section 6, "Optional actions" covers "Require authentication".
 
 
On the single setup, I agree, for those types of clients.  But we have no
indication that OP has that type of client, though, so, my question remains
open for the OP.
 
 


  _____  

From: Michael B. Smith [mailto:michael@xxxxxxxxxx] 
Sent: Thursday, September 15, 2005 8:31 PM
To: [ExchangeList]
Subject: [exchangelist] RE: Authenticated Outgoing Mail


http://www.MSExchange.org/

The draft-RFC says that you "must" require SMTP auth for port 587.
 
Most of my clients want a single set up. They don't want to have to change
anything, regardless of whether they are home, timbuktoo, or china too.

  _____  

From: Carl Houseman [mailto:c.houseman@xxxxxxxxx] 
Sent: Thursday, September 15, 2005 8:17 PM
To: [ExchangeList]
Subject: [exchangelist] RE: Authenticated Outgoing Mail


http://www.MSExchange.org/

Why should it be necessary to have different authentication requirements for
the different ports?
 
Just set up on VS to listen on 25 and 587 and require authentication for
relaying purposes.
 
I would guess he's already requiring authentication to relay for his clients
that can still come in on 25.
 
 
A better question is, "Why bother using the Exchange server?  Just use the
ISP's mail server for outbound SMTP".
(One possible response is "ISP limits message size or volume" but if not
that, then what?)
 
 

  _____  

From: Michael B. Smith [mailto:michael@xxxxxxxxxx] 
Sent: Thursday, September 15, 2005 7:58 PM
To: [ExchangeList]
Subject: [exchangelist] RE: Authenticated Outgoing Mail


http://www.MSExchange.org/

How do you set one to require authentication and the other "not to"?
 
:-)

  _____  

From: Carl Houseman [mailto:c.houseman@xxxxxxxxx] 
Sent: Thursday, September 15, 2005 7:54 PM
To: [ExchangeList]
Subject: [exchangelist] RE: Authenticated Outgoing Mail


http://www.MSExchange.org/

Huh?
 
At least, in Exchange 2003:
 
Default SMTP Virtual Server
Properties
Advanced
"Configure multiple identities for this Virtual Server"
 
Mine shows
 
IP Address   TCP Port
192.168.0.10 2525
192.168.0.10 25
 
Two ports, one IP address, one VS.


  _____  

From: Michael B. Smith [mailto:michael@xxxxxxxxxx] 
Sent: Thursday, September 15, 2005 7:43 PM
To: [ExchangeList]
Subject: [exchangelist] RE: Authenticated Outgoing Mail


Yes, but each SMTP VS can only listen on a single port. So you'd probably
want to add an additional SMTP VS.

  _____  

From: John Tolmachoff (Lists) [mailto:johnlist@xxxxxxxxxxxxxxxxxxx] 
Sent: Thursday, September 15, 2005 6:09 PM
To: [ExchangeList]
Subject: [exchangelist] RE: Authenticated Outgoing Mail


http://www.MSExchange.org/


I am not sure if Exchange can be configured to listen on 587 in addition to
25, but it is accepting inbound authenticated connections is what you meant.


 

A work around (as long as your Exchange server is properly configured) is to
add an inbound rule to your firewall (you are running a firewall aren't you)
to redirect incoming port 587 traffic on the external interface to port 25
on the internal destination.

 

John T

eServices For You

 

-----Original Message-----
From: EIS Lists [mailto:eis_lists@xxxxxxxxxxxxx] 
Sent: Thursday, September 15, 2005 2:54 PM
To: [ExchangeList]
Subject: [exchangelist] Authenticated Outgoing Mail

 

http://www.MSExchange.org/

Hello:

 

We have several users who access their Exchange accounts via POP and SMTP.
Recently, several large ISPs have started blocking outbound traffic that
does not use their servers. Is there a way to tell Exchange 2000 to use
authenticated outbound connections (e.g., over port 587)?

 

Thanks.

Other related posts: