There is one somewhat obscure test that an Exchange server (properly set up to not relay mail) will appear to the testing entity to accept mail for delivery to a third server but it just drops the message. It just doesn't return an error message. So the websites that test for you tend to say you may be open but they don't list you as open or anything since the message doesn't acutally arrive in the test box they set up. IIS SMTP may display the same behavior, I am not sure. But I wouldn't be surprised. You should be able to tell by having a valid address (like a yahoo one or whatever) that you send the messages to when you use the telnet trick and then if they don't make it it didn't work.
If you really want to know which test it is that displays this behavior with Exchange you could try hunting around on the orbs site because that is where I found out about it. They used to have a list of all the tests they ran and that one was annotated for Exchange. Or you can try e-mailing me direct for a copy but since (in theory) our T1 is moving sometime today you may not hear back until Monday. hth Ronni ********************************* Today is the difference between yesterday and tomorrow. --------------------------------- > -----Original Message----- > From: STEVE BROOK [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, November 21, 2001 10:53 AM > To: Exchange Discussions > Subject: RE: People using my IIS SMTP relay > > > Sfunny, I can't relay through your machine, but that's only a basic > test. I believe abuse.net do more intensive testing. Which test did > they fail you on? > > SB > > -----Original Message----- > From: Jesse Rink [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, November 21, 2001 2:48 PM > To: Exchange Discussions > Subject: RE: People using my IIS SMTP relay > > > Hehe... I was wondering where the link was in the first message. > Anyway, I tested it out (I had to register on the site first) and it > told me the host (me) DOES appear to accept messages for relay. Not > good. > > Ok, I still don't understand why I could not relay myself from my home > PC. When I telnetted to port 25 of the server from home I couldn't do > it and all the commands I entered resulted in 550 > (unrecognized command) > errors or no response at all. How did this website manage to get > relaying to work when I couldn't? If anyone wants to try > connecting to > my relay, feel free. The outside IP address is > 169.207.144.68. See if > it works for you or not. > > Second, since relaying is obviously open... I need help > figuring out how > to turn it off. If anyone has experience configuring IIS SMTP let me > know. It must be the settings within IIS but I'm not sure what to > change without losing the ability to relay messages for > whitnall.com (my > domain). > > > > > Might help if I included the URL -- OOOOOPs! > > > > http://www.abuse.net/relay.html > > > > -----Original Message----- > > From: STEVE BROOK=20 > > Sent: Wednesday, November 21, 2001 2:25 PM > > To: Exchange Discussions > > Subject: RE: People using my IIS SMTP relay > > > > > > Use this URL to setup an external test on your mail system. > You can > > test your system without being blacklisted. > > > > SB > > > > -----Original Message----- > > From: Jesse Rink [mailto:[EMAIL PROTECTED]]=20 > > Sent: Wednesday, November 21, 2001 2:19 PM > > To: Exchange Discussions > > Subject: People using my IIS SMTP relay > > > > > > Well, after making sure my IIS 4.0 SMTP relay server was > not infected > > by the NIMDA virus and applying all the MS01-044 IIS cumulative > > security bulletin, I am still being used as a relay point. > > > > The most confusing thing is: I can't understand how they > are doing it > > because when I telnet into the IIS SMTP relay from HOME, it DOESN'T > > allow me to relay. The following shows up: > > > > 220-w-smtp01.whitnall.com Microsoft SMTP MAIL ready at Wed, 21 Nov > > 2001 08:16:19 -0600 Version: 5.5.1877.197.19 > > 220 ESMTP spoken here =20 > > > > At this point I try and type "Helo me", "Mail From:", or other > > commands, and they ALL fail with either a) a 550 error, b) no > > response. > > > > If on the other hand, I telnet into the SMTP relay from a > PC here on > > the LAN I can issue "Helo me", "Mail From:" or other > commands and use > > it as a relay without problem. > > > > What I'm looking for is someone running IIS SMTP services > to help me > > out here. My IIS SMTP relay is in my DMZ Interface and my (1) > > Exchange server is on the Inside Interface of the firewall. I'm > > worried that our domain will start getting banned or black > listed (I > > heard this happens) because we are being used as a relay > point. This > > is the 2nd day it's been occuring and I need to get this fixed soon. > > > > If you can help, please let me know. Thanks. > > > > Jesse Rink > > [EMAIL PROTECTED] > > > > > > > > > > > > _________________________________________________________________ > > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > > Archives: http://www.swynk.com/sitesearch/search.asp > > To unsubscribe: mailto:[EMAIL PROTECTED] > > Exchange List admin: [EMAIL PROTECTED] > > > > _________________________________________________________________ > > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > > Archives: http://www.swynk.com/sitesearch/search.asp > > To unsubscribe: mailto:[EMAIL PROTECTED] > > Exchange List admin: [EMAIL PROTECTED] > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
