My Exchange Server Config: NT Server 4.0 + Exchange Server 5.5(SP3)
I found someone are using our Exchange Server to replay spam emails.
1.There are some strange emails queued in IMS. Their orignators are '<>' and
host are those,such msx.epaper.com.tw.
2.In Win NT event log, I found some words, such as 'A new TCP/IP SMTP
connection has been
received from host msx.epaper.com.tw'.
According Exchange Server Onlin Help,I have made these settings:
In IMS "Routing" Tab / Routing Restriction,I checked "Hosts and clients
that successfully authenticate" and "Host and clients with these IP
but without any IP addresses.
I want to add the IP addresses of these bad hosts,such as
to "Specify the hosts and clients that can NEVER route mail", with mask
My problem is 'Are these setting enough?".
Thanks for your help!