I believe that is correct. The vulnerability is related to SMTP AUTH and if hosts and clients which successfully authenticate is not an allowed option, I don't believe you'd be vulnerable.
------------------------------------------------------------ Chris Scharff - MCSE, Exchange MVP 512.652.4500 x244 Senior Sales Engineer MessageOne ------------------------------------------------------------ > -----Original Message----- > From: JCMont [mailto:[EMAIL PROTECTED]] > Sent: Monday, March 11, 2002 1:10 PM > To: Exchange Discussions > Subject: MS02-011 > > > I am rejoining this group after being gone for a while so if > I am asking something that has already been discussed I do > apologize. I tried to search the archives but I did not see > anything. I had a question about security bulletin MS02-011 > (mail relaying on an Exchange 5.5 server). From the FAQ > section it says... Before a user can make use of a mail > service, they first must authenticate to the server. But even > if this is done successfully, the mail services themselves > should perform additional checking to ensure that it's > appropriate to let the user access them. Neither the Windows > 2000 SMTP service nor the Exchange Server 5.5 IMC perform > this additional checking correctly. The result is that a user > who could successfully authenticate to the server would > always have the ability to use the mail services, even if > it's not appropriate. Does this mean that if Exchange is > setup to relay mail and then set that it would only relay > mail for authenticated users that this is vulnerable? Should > I take it to mean that if Exchange is setup to not relay or > only relay from certain IP's that it is not vulnerable? I > appreciate your input. I am trying to correctly evaluate the > scope of this vulnerability. Thank you. John > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
