RE: Aaaarrrrggghhhh - What ports for OWA through only 1 firewall (no DMZ) besides 80
You could set up IPSec tunnels between this server, the backend server, and the DCs. You could even limit those to only the ports necessary for it to function. Then you'd need to open the firewall for type 50 traffic (ESP IPSec), port 500 TCP for IKE (Key Exchange), and port 88 TCP for Kerberos. Also, you can get a server certificate for the OWA server and lock it down to SSL only so usernames and passwords aren't passed over the internet in the clear. Yes, you only need port 80 to the backend server, you need more significant access to the DCs. You'll need to lock DS traffic to a specific high-number port -- there's a Q article on it. You iknow what, here's a list of resource articles: Exchange 2000 Outlook Web Access http://www.microsoft.com/technet/treeview/default.asp?url=/technet/prodt echnol/exchange/exchange2000/deploy/confeat/e2kowa.asp Using Microsoft Exchange 2000 Front End Servers http://www.microsoft.com/downloads/details.aspx?displaylang=enFamilyID= AFAD8426-572E-40F8-99DA-EB7198F374C4 XGEN: TCP/UDP Ports Used By Exchange 2000 Server http://support.microsoft.com/default.aspx?scid=kb;en-us;Q278339 Exchange 2000 in the Enterprise: Tips and tricks Part One Tim Mullen http://www.securityfocus.com/infocus/1654 Exchange 2000 in the Enterprise: Tips and tricks Part Two Tim Mullen http://www.securityfocus.com/infocus/1658 Exchange 2000 in the Enterprise: Tips and tricks Part Three Tim Mullen http://www.securityfocus.com/infocus/1668 Securing Exchange 2000, Part One Chris Weber http://www.securityfocus.com/infocus/1572 Securing Exchange 2000, Part Two Chris Weber http://www.securityfocus.com/infocus/1578 Securing IIS 5.0 SecurityFocus http://www.securityfocus.com/infocus/1312 XWEB: How to Make Outlook Web Access the Default Web Site http://support.microsoft.com/default.aspx?scid=kb;en-us;319878 Improve Windows Servers Security http://www.microsoft.com/technet/treeview/default.asp?url=/technet/secur ity/tools/ChkList/wsrvSec.asp Windows 2000 Server Baseline Security Checklist http://www.microsoft.com/technet/treeview/default.asp?url=/technet/secur ity/tools/chklist/w2ksvrcl.asp Secure Internet Information Services 5 Checklist Michael Howard http://www.microsoft.com/technet/treeview/default.asp?url=/technet/secur ity/tools/chklist/iis5chk.asp Restricting Active Directory Traffic to a Single Port XADM: Known Issues and Fine tuning When you Use the IIS Lockdown Wizard in an Exchange 2000 Environment http://support.microsoft.com/?ID=309677 XCCC: Turning on SSL for Exchange 2000 Server Outlook Web Access http://support.microsoft.com/?ID=320291 Using VNC with SSH http://www.uk.research.att.com/vnc/sshvnc.html The Secure Shell Frequently Asked Questions http://www.employees.org/~satch/ssh/faq/ VPN with pre-Shared Keys http://networking.earthweb.com/netsecur/article.php/10952_913361_1 Cisco Pix Documentation http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_62/in dex.htm Cisco Pix Modification Instructions http://www.blueridgenetworks.com/SupportDocs/Cisco%20Pix.pdf -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jeffrey Dubyn Sent: Friday, April 04, 2003 5:34 AM To: Exchange Discussions Subject: Aaaaggg - What ports for OWA through only 1 firewall (no DMZ) besides 80 Against my very loud protest, a customer insists on deploying OWA to users on the Internet with no security in place. They nixed a front end server, SSL, VPN solution or an ISA server. My question is, what port(s), other than port 80, do I need to open up on the firewall? This is Exchange 2000 SP3, fully patched. I've looked through KB article #278339 and #280132 (which discusses DMZ's), but don't see anything other than port 80 needed. Am I missing something? Any other suggestions on what I can do to secure this (if anything)? _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Aaaarrrrggghhhh - What ports for OWA through only 1 firewall (no DMZ) besides 80
Here are the policies I would add for IPSec IPSec Settings: Action Source DestAddress Function Allow Any TCP443 All IP Allow all SSL traffic Allow TCP443 Any All IP Allow all SSL traffic Allow Any TCP80 BackeEnd Exchange Allow HTTP from Back End Allow Any TCP53 All DCs DNS (Assumes integrated DNS) Allow Any UDP53 All DCs DNS Allow Any TCP88 All DCs Kerboros Allow Any UDP88 All DCs Kerboros *Allow Any TCP123 All DCs Time Protocol Allow Any UDP123 All DCs Time Protocol Allow Any TCP135 All DCs RPC Endpoint mapper Allow Any TCP389 All DCs LDAP - Directory Services Allow Any UDP389 All DCs LDAP - Directory Services Allow Any TCP1025 All DCs Domain RPC traffic (Assumes its locked to these ports -- could be anything) Allow Any TCP1026 All DCs Domain RPC traffic Allow Any TCP3268 All DCs LDAP - Global Catalog DenyAny Any Any All Else Denied You'll need to set the backend server and DCs to have at least an IPSec policy of client so these communications can be established. TCP 123 to the DCs is certainly negotiable, as is DNS, although on DNS I think it's prefereable to a hosts file on an external server. Absolutley put the WWWROOT on a drive other than the Boot partition. Run MBSA and HFNetChk (MBSA by default doesn't check checksums), the OWA security template with IISLockdown, and URLScan. One of the KB articles I linked earlier gives details of the exceptions you'll need to set for the URLScan.ini. Some documentation would also suggest adding TCP 445 to the DCs. As far as I can tell this is just for the application of group policy. I'd rather deal with the slow boot times than offer this. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Public Folder: Exchange Sent: Friday, April 04, 2003 11:12 AM To: Exchange Discussions Subject: RE: Aaaaggg - What ports for OWA through only 1 firewall (no DMZ) besides 80 At the very least, you should run URLscan on that machine so that it's not hacked immeadiately. -Kevin -Original Message- From: Jeffrey Dubyn [mailto:[EMAIL PROTECTED] Posted At: Friday, April 04, 2003 2:34 AM Posted To: Exchange Conversation: Aaaaggg - What ports for OWA through only 1 firewall (no DMZ) besides 80 Subject: Aaaaggg - What ports for OWA through only 1 firewall (no DMZ) besides 80 Against my very loud protest, a customer insists on deploying OWA to users on the Internet with no security in place. They nixed a front end server, SSL, VPN solution or an ISA server. My question is, what port(s), other than port 80, do I need to open up on the firewall? This is Exchange 2000 SP3, fully patched. I've looked through KB article #278339 and #280132 (which discusses DMZ's), but don't see anything other than port 80 needed. Am I missing something? Any other suggestions on what I can do to secure this (if anything)? _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Script execution via e-mail?
How are you going to find an exchange server if your WINS settings are wrong? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Parrnelli GS11 Ben T Sent: Wednesday, April 02, 2003 7:05 PM To: Exchange Discussions Subject: Script execution via e-mail? Exchange 5.5 SP4 NT 4.0 SP6 SRP Outlook 2000 I'm in the process of changing WINS addresses on remote machines via a script. I know I'm not going to get everyone in the domain the first, second, or tenth time I run this script, however, and am looking for ways to streamline the process. Has anyone here ever created a mailbox that a user could send to that would execute a script? For example, I'm sitting at my machine 'NTPC1' and didn't get the WINS change. I can't change it myself, as I'm not admin on the local box. However, all I need to do is send a blank e-mail with 'WINSCHANGE NTPC1' in the subject and the script will be executed on my machine. Anyone? Ben Parrnelli Network Administrator Comm Data Directorate MAGTF Training Command 29 Palms, CA 92278 _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Entering login credentials in URL for OWA
You can specify the default Domain in IIS, or in the System manager if it's E2K. As for the syntax for user and pass in the URL -- I haven't tried it with OWA, but if it works it should be https://user:[EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of The Geek Q Sent: Wednesday, March 26, 2003 2:19 PM To: Exchange Discussions Subject: Entering login credentials in URL for OWA I am failing at getting a seamless login by entering the user credentials in the URL. I can get it to work on another environment w/o the domain. This environment uses DOMAIN\username then passowrd. System is E2K SP3, front-end, back-end topology. What is the syntax for entering login credentials in OWA into the URL? - John Q Jr. _ _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Entering login credentials in URL for OWA
Dig down to the server object, then to the exchange virtual directory. Right click it and specify the domain. I believe you need to specify the W2K domain. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Chinnery, Paul Sent: Wednesday, March 26, 2003 3:09 PM To: Exchange Discussions Subject: RE: Entering login credentials in URL for OWA Where do you input it in System Mgr? I've seen it in IIS but with our OWA, we still have to log on in the form domain\user name. Paul Chinnery Network Administrator Mem Med Ctr -Original Message- From: Patrick R. Sweeney [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 26, 2003 2:51 PM To: Exchange Discussions Subject: RE: Entering login credentials in URL for OWA You can specify the default Domain in IIS, or in the System manager if it's E2K. As for the syntax for user and pass in the URL -- I haven't tried it with OWA, but if it works it should be https://user:[EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of The Geek Q Sent: Wednesday, March 26, 2003 2:19 PM To: Exchange Discussions Subject: Entering login credentials in URL for OWA I am failing at getting a seamless login by entering the user credentials in the URL. I can get it to work on another environment w/o the domain. This environment uses DOMAIN\username then passowrd. System is E2K SP3, front-end, back-end topology. What is the syntax for entering login credentials in OWA into the URL? - John Q Jr. _ _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Entering login credentials in URL for OWA
No, I'm saying the Domain can be specified in IIS and then it doesn't need to be in the URL. This, of course, assumes something about the target environment. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of The Geek Q Sent: Wednesday, March 26, 2003 3:53 PM To: Exchange Discussions Subject: RE: Entering login credentials in URL for OWA Are you saying that you can use the seemless authenication when you have to sepcifythe domain? I thought you could use https://DOMAIN?user:[EMAIL PROTECTED] obviously https://DOMAIN/user:[EMAIL PROTECTED] does not work. Do you need SSL for this to work as well? From: Patrick R. Sweeney [EMAIL PROTECTED] Reply-To: Exchange Discussions [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Subject: RE: Entering login credentials in URL for OWA Date: Wed, 26 Mar 2003 14:51:13 -0500 You can specify the default Domain in IIS, or in the System manager if it's E2K. As for the syntax for user and pass in the URL -- I haven't tried it with OWA, but if it works it should be https://user:[EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of The Geek Q Sent: Wednesday, March 26, 2003 2:19 PM To: Exchange Discussions Subject: Entering login credentials in URL for OWA I am failing at getting a seamless login by entering the user credentials in the URL. I can get it to work on another environment w/o the domain. This environment uses DOMAIN\username then passowrd. System is E2K SP3, front-end, back-end topology. What is the syntax for entering login credentials in OWA into the URL? - John Q Jr. _ _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Entering login credentials in URL for OWA
How is the domain listed? Is it the NT 4 equivalent name, or is the DNS style 2000 name? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Chinnery, Paul Sent: Wednesday, March 26, 2003 3:59 PM To: Exchange Discussions Subject: RE: Entering login credentials in URL for OWA You missed part of my message, Kevin. I also said that our domain is already listed in IIS yet users still need to enter it when logging on to OWA. Paul Chinnery Network Administrator Mem Med Ctr -Original Message- From: Public Folder: Exchange [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 26, 2003 3:37 PM To: Exchange Discussions Subject: RE: Entering login credentials in URL for OWA Comes back with You must use IIS Admin to manage this Virtual Server's properties. Then there is your answer. Set the default domain in IIS -Kevin _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Exmerge?
The database will grow if you then import the data again. It is at this point that SIS is lost. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Peter Orlowski Sent: Monday, March 24, 2003 2:38 PM To: Exchange Discussions Subject: RE: Exmerge? I think you can only use Exmerge while the Exchange is online. I use it all the time when a user leaves the company and have had no problems with it. The largest I have ever exported is 200MB though and it took about 10 seconds. I have yet to see the database grow becuase of me using exmerge. - Peter -Original Message- From: Pillai, Raj [mailto:[EMAIL PROTECTED] Sent: Monday, March 24, 2003 11:35 AM To: Exchange Discussions Subject: Exmerge? I have to use the exmerge utility to create PST files of mailboxes for about 3 users who are leaving the firm. Their mailbox sizes are really huge (about 1GB each). I have never had the opportunity to use Exmerge, so I want to get an idea. Can this be done online or do I need to take the Exchange Server offline to do this? I know it affects the SIS, will it really increase my database size drastically? I only have 4GB of space left on a 36Gb partition where the Information store resides. Will this retain the folder tree structure for OL client. If it requires exchange downtime, I'd rather export to PST files using the Outlook client. Thanks for all your input Raj ** This e-mail message, including any attachments, contains information that is confidential, may be protected by the attorney/client or other applicable privileges, and may constitute non-public information. This message is intended to be conveyed only to the designated recipient(s). If you are not the intended recipient of this message, do not read it; please immediately notify the sender that you have received this message in error and delete this message.Unauthorized use, disclosure, dissemination, distribution, reproduction of this message or the information contained in this message or the taking of any action in reliance on it is strictly prohibited and may be unlawful. Thank you for your cooperation. ** _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: Can this happen with Spam ?
No code. You receive an HTML message. In the HTML it includes img src=http://someIP/TrackingImages/SomeUniquelyGeneratedImageName.Gif The Gif file is probably a blank image and can be generated by the server. The fact that the image is requested - because the client tries to pull it from the Internet to display it is tracked and because the name of the file is unique to the recipient they then know that emnail address to be active. Unfortunately, unlike other distinctions in your IE settings this setting cannot be associated with your security zone. So, you don't have the option to view images in Internet Explorer when viewing sites in your Internet zone, but not in email when viewing from your Restricted Sites Zone. Since you are using scanning software, perhaps you could strip img tags from HTML email, but this might render some newsletters unreadable. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of RBHATIA Sent: Thursday, March 20, 2003 10:22 AM To: Exchange Discussions Subject: Can this happen with Spam ? Hi, As I try to battle the tons of spam related email my organization receives everyday, I am amazed at the increasing number of emails targetting our organization despite the fact that we do have a filtering technology in place. Which brings me to the question - are we doing something to invite these emails ? I came across an article by Brian Livingstone recently about spam and how certain tactics can invite spammers to your organization. I quote a statement from his article relating to the results of an experiment they carried out at some law firm - They found that 83 percent of the spam being received contained a coded tracking image. When the image was downloaded to be displayed in the message, it alerted the senders that a message sent to a specific address had been viewed. This is now the most prevalent mechanism by which spammers find live accounts, in my opinion. Is this possible in Outlook ? The article said something about with the Preview pane being turned on in Outlook, this was more likely to happen or just opening an email with this sort of an image in it could also trigger the code. How can this happen ? This means Outlook is allowing some code to get executed that passes information back to the source. Isn't there a security patch to prevent this from happening ? RB _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
RE: wear a cup if you plan on posting questions
He's still dead. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Erik Sojka Sent: Thursday, March 13, 2003 8:28 AM To: Exchange Discussions Subject: RE: wear a cup if you plan on posting questions This is off topic! Let's get back to talking about the PM of Serbia. -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 12, 2003 8:00 PM To: Exchange Discussions Subject: RE: wear a cup if you plan on posting questions They don't care about the cost of malpractice insurance for interns, just for themselves! Ed Crowley MCSE+Internet MVP Freelance E-Mail Philosopher Protecting the world from PSTs and Bricked Backups!T -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dupler, Craig Sent: Wednesday, March 12, 2003 4:51 PM To: Exchange Discussions Subject: RE: wear a cup if you plan on posting questions Some will even rise to the occasion to defend hazing. Even very smart people do this, including doctors that defend 36 hour shifts for interns, and then have the temerity to complain about the high cost of mal practice insurance or unfair tort awards. But I digress. Call it lazy if you like. But a kind pointer to someone in need costs little and gains much. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: wear a cup if you plan on posting questions
It's kind of like being a sophomore in High School. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Dupler, Craig [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Monday, March 10, 2003 5:58 PM Subject: RE: wear a cup if you plan on posting questions Sometimes those with a little experience are not so tolerant of those with less. Newbie pointers to the archives and knowledge base tend to come with a lot of colorful hazing. The odd thing is that those that have been hazed and complained mightily about it, frequently appear a year or two later as some of the harshest slammers of newbies. -Original Message- From: Ryan Finnesey [mailto:[EMAIL PROTECTED] Sent: Monday, March 10, 2003 2:46 PM To: Exchange Discussions Subject: RE: wear a cup if you plan on posting questions I do not see this has a bad thing. Ryan -Original Message- From: John Strongosky [mailto:[EMAIL PROTECTED] Sent: Monday, March 10, 2003 3:53 PM To: Exchange Discussions Subject: wear a cup if you plan on posting questions Below is a quote from a another list that I subscribe too describing this list.you guys and gals aren't that badI don't know about you all but I don't wear a cup just a saucer But..heed the warning. Do not post questions that you could/should have been able to answer yourself. Responses can be very humiliating if, for instance, you ask a question about something that is in the archives, or is very basic to messaging. It may be one of the most valuable lists, but wear a cup if you plan on posting questions. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: OOO web app
The ability to set OOO exists in OWA. If you need to separate it from there you could look at the code of the pages in OWA. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Woodruff, Michael [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, March 06, 2003 9:54 AM Subject: OOO web app Is it possible to create a web app that you can use to set individual users OOO (exchange 2000)? I cant find the object(If there is one) that points to OOO. I am not a developer by far, but if someone could point me in the right direction it would be much appreciated. Thanks. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: OOO to internet, still bad?
I actually tracked a deadbeat ex-friend down once from the source IP in the header of an email from him. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Chris Scharff [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, March 05, 2003 1:31 PM Subject: Re: OOO to internet, still bad? The more substantial risk IMHO is in Human Engineering exploits of your business. I've certainly gotten more than enough information in OOA responses to attempt such a thing. Snopes underestimates the difficulty of matching names to addresses, especially when working with known domains. (e.g. Dell in Austin or government workers for the City of Detroit) Still, though unlikely to occur we generally don't change our home answering machines to reflect that we are going to be out of town either. On 3/5/03 11:37, Allison M. Wittstock [EMAIL PROTECTED] wrote: Ed, since you use this example often, can you provide me with some real world examples of someone being burglarized because their OOO message told the world they were away? I think I am more likely to be burglarized by a neighbour that notices I am gone, or someone that sees my postbox has been emptied in days, or someone overhearing me order plane/train tickets, etc. This issue has also been discussed on the urban legend debunking site, Snopes. The link is http://www.snopes.com/crime/intent/reply.htm I look forward to hearing your opinion or some proof of this happening. Cheers, Allison On Wednesday 05 March 2003 02:39 am, you wrote: The risk of a mail loop with OOO is small. However, consider the following: Byron Kennedy is out of the office vacationing in the south of France until the end of the summer. Please feel free to drop by his house at 123 Any Street, Anytown, USA, and help yourself to whatever is left. If you are a spammer, then you've hit a live mailbox! Tell your friends! Ed Crowley MCSE+Internet MVP Freelance E-Mail Philosopher Protecting the world from PSTs and Bricked Backups!T -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Byron Kennedy Sent: Tuesday, March 04, 2003 5:34 PM To: Exchange Discussions Subject: OOO to internet, still bad? I know this has caused havoc on e-mail systems in the past. Is this still frowned on and if so, are there any best-practices available out there on how to enable a firm to provide this service effectively with exchange 2000, outlook 2000/xp and avoid pitfalls in the past? How do others articulate or provide work-arounds? Thx for ideas... byron _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: OOO to internet, still bad?
Ok, so here goes my OOO horror story. First off, this is not straight on point because it involved an older Outlook client, Exchange 5.5, and a quick hack for a user that I shouldn't have done -- but I didn't know it at the time. 1. We upgraded to Exchange 5.5 and got some complaints because some folks auto-reply rules weren't working. So I enabled it. 2. We had a consultant leave, and as was normal and expected at this particular firm left him with email and allowed him to set up a rule to auto-forward his email to an outside address, and auto-reply to incoming messages. 3. The consultant in question popped back after a few days later and complained about the format of the forwarded messages, commenting that they were difficult to respond to since they appeared to be from his account. Now a custom recipient would have been perfect for this purpose, but not knowing that, and knowing the Inbox Assistant would forward in the fashion he wanted, I disabled the Rules Wizard in his inbox, and set up an Inbox Assistant rule to auto-reply. 4. We went away for a Holiday weekend, and the holiday in question either fell during the weekend or on a Tuesday, but we had a four day weekend. This was actually some time later, but the user received a message from a subscription service at the beginning of this long weekend informing him of their support constraints around the holiday, and then continuing to do so with every message we sent back. 5. I walked in on day 5, and sat down at my desk to see 8 (I think that was the number) overflow messages from the users mailbox which was well past its limit. I tried to pup up the Exchange Administrator but it just hung and I ran downstairs to pull the network wire. 6. I got there just in time to watch the Exchange Server reboot, and then spend the rest of the day restoring. It was the combination of OOO, and reversion to the older Inbox Assistant that toasted me. The Out of Office Assistant isn't supposed to loop like that. Regardless, someone advocated an approach where an assistant or another employee is assigned as an alternate recipient. I think you are better off to do this for several reasons, including some that benefit the person on vacation. 1. Email is a company resource - if a client uses it to contact you they should get a response. They aren't on vacation, you are. 2. Email is a company resource - if an employee knows that someone else will read his email when he is out, it becomes increasingly likely that he will encourage friends and family to use a personal address for personal business, jokes, and other nonsense. (And no, it isn't an invasion of privacy as far as I'm concerned.) 3. Vacation is time off from work - that is increasingly true if you aren't returning to stale, unanswered messages. The first word on my voicemail when I'm on vacation is STOP -- and they usually do. I do use OOO, typically to provide contact information for my coworkers and boss and intranet and Internet resources for general troubleshooting, and reinforcement that if the sender doesn't forward his message to another resource it will go unanswered until at least the day of my return. (The use of present tense here is to say this is my normal practice. I don't use OOO at all at the moment since I don't have a job.) -Patrick R. Sweeney - Original Message - From: Byron Kennedy [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Tuesday, March 04, 2003 9:23 PM Subject: RE: OOO to internet, still bad? Humm... Seems like we could mitigate that risk with verbiage in the acceptable use policy on what is acceptable content to put into an OOO. No? I do recall your standard disclaimer on this behavioral approach. :) Granted, enforcing that portion of the policy would be a chore. Though someone would surely bring that point up. So far, SPAM sounds like the only real solid ground. :( byron -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 04, 2003 5:39 PM To: Exchange Discussions Subject: RE: OOO to internet, still bad? The risk of a mail loop with OOO is small. However, consider the following: Byron Kennedy is out of the office vacationing in the south of France until the end of the summer. Please feel free to drop by his house at 123 Any Street, Anytown, USA, and help yourself to whatever is left. If you are a spammer, then you've hit a live mailbox! Tell your friends! Ed Crowley MCSE+Internet MVP Freelance E-Mail Philosopher Protecting the world from PSTs and Bricked Backups!T -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Byron Kennedy Sent: Tuesday, March 04, 2003 5:34 PM To: Exchange Discussions Subject: OOO to internet, still bad? I know this has caused havoc on e-mail systems in the past. Is this still frowned on and if so, are there any best-practices available out there on how to enable a firm to provide
Re: Failed delivery
I've had a few desktops I wanted a DNR for. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Avi Smith-Rapaport [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, February 27, 2003 10:22 AM Subject: RE: Failed delivery I thought you can only use a dnr on ER? -Original Message- From: Chris Scharff [mailto:[EMAIL PROTECTED] Sent: Thursday, February 27, 2003 10:06 AM To: Exchange Discussions Subject: Re: Failed delivery Perhaps if you posted a sample DNR... On 2/27/03 8:49, Watkins V [EMAIL PROTECTED] wrote: Dear all, We have a situation where exchange 5.5 users are subscribed to a list as supplied by a unix listmanager. When a message is sent to this list, there are 240 members, there always seem to be a number of failures, which appear to be random. Any ideas why? I have looked for events in the logs after switching on all logging for mta, is, transport etc, but nothing useful. They are not over their mailbox limit, they do not all have inbox rules, so I am baffled. Ex5.5 sp4 plus fixes, NT 4etc thanks Vanessa Watkins Network Manager Royal Holloway, University of London Tel: 01784 443728 email: [EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: HIPPA and mail relaying
There are multiple methods of relaying. The tool should report how it is relaying. Abuse.net maintains a tool which will tell you if you are relaying. http://www.abuse.net/relay.html -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Waters, Jeff [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Wednesday, February 26, 2003 3:14 PM Subject: HIPPA and mail relaying Since HIPPA is the thread of the day. We are running 5.5 sp3 and I have the Do not reroute incoming SMTP mail tab selected in the Routing tab of the IMS selected. The magic tool that the consultant used, and I don't know what it is, and the CFI LANguard scanner I just used is reporting that the server is an open mail relay. Now the consultant is telling us that he doesn't usually get a false hit on this. So for you exchange guru's out there, have any of you ran into this before, or am I just being a bonehead and missing something. Thanks Jeff _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: Message Size w/BCC
Given that exchange provides Single-Instance-Storage I suspect you are correct -- that the info is in the store, but obfuscated for other users. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Tim Ault [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 4:39 PM Subject: Message Size w/BCC I occasionally BCC-send broadcast messages to 2500 recipients within our company. The email contains less than 1k of text. The size of the message in the sent items folder is 500k, which makes sense when the recipient field is taken into account. I find it odd that the email appears with message size of 500k to its recipients. Were a recipient to forward or reply to the message, its size appears as less than 1k. It seems the message's recipient information is being conveyed, though obfuscated, between intra-Org exchsrvr recipients, and that would explain the size of the email? Or is it a bug? Tim. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: Exchange server level encryption
Write Only Memory. http://kldp.org/~eunjea/jargon/?idx=write-only-memory -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Andrey Fyodorov [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 5:43 PM Subject: RE: Exchange server level encryption tong_in_cheek Do you even care that it should always get decrypted? Just shoot it all out to the Internet in the encrypted form (with PGP). If someone can't decrypt it - tough cookies; as far as the legal deparment is concerned, ***all*** your mail has been encrypted. /tong_in_cheek -Original Message- From: Hutchins, Mike [mailto:[EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 3:34 PM To: Exchange Discussions Subject: RE: Exchange server level encryption Well, basically, any information transmitted outside of our company through a public channel (internet included) has to be encrypted. Neither the specific type of, nor level of is explicitly stated. What I basically want to do is this. If anyone sends email outside of our company, I want it to be grabbed and encrypted. Decryption I would guess would have to happen at the client on the other side. -Original Message- From: Leeann McCallum [mailto:[EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 1:27 PM To: Exchange Discussions Subject: RE: Exchange server level encryption You could have a look at MailMarshal Secure which is an email encryption and decryption gateway. It's an add-on to MailMarshal which provides content filtering, virus checking etc. Are you looking specifically at e-mail encryption or would something like transport layer encryption be sufficient? What does your security policy say? Leeann -Original Message- From: Hutchins, Mike [mailto:[EMAIL PROTECTED] Sent: Wednesday, 26 February 2003 9:25 a.m. To: Exchange Discussions Subject: Exchange server level encryption Ok, my eyes are going crossed. I have been trying to figure out a decent way to encrypt all outbound email from our company. This is for compliance with HIPAA. Does anyone happen to have any ideas? I have googled and haven't found a product that looks right. I have searched for exchange 2000 encryption, email encryption, etc. Help? TIA Mike _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] NOTICE - This e-mail is only intended to be read by the named recipient. It may contain information which is confidential, proprietary or the subject of legal privilege. If you are not the intended recipient please notify the sender immediately and delete this e-mail. You may not use any information contained in it. Legal privilege is not waived because you have read this e-mail. For further information on the Beca Group of Companies, visit our web page http://www.beca.co.nz _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: Exchange server level encryption-OT
HIPAA does provide detail for securing non-electronic transmission of Personal information. Basically -- it has to be sealed and trackable (Rewgistered mail, UPS, FedEx, etc.) There is information and instruction available at http://www.hipaa.org and http://www.ahima.org. AHIMA also provides a series of online classes for $1100 which provide a form of individual IT HIPAA accreditation. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Chris Scharff [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 7:09 PM Subject: Re: Exchange server level encryption-OT Not an expert on the science behind this essay http://tnr.com/docprint.mhtml?i=20030224s=easterbrook022403, but the idea of needing to use nuclear power plants to product the levels of hydrogen needed for 'clean fuel cells' seems to make the water is the only byproduct argument a bit disingenuous. Course as I said, I'm not an expert on the subject so I'm certainly open to knowing where the levels of hydrogen needed for such a thing would come from. Perhaps instead of replacing HIPPA, those companies subject to its regulations need to rethink how and why patient data would need to leave their environment and design secure systems (which e-mail aint) to facilitate that transmittal. Course the reality is companies aren't really interested in protecting patient data, just in being compliant with the various regulatory agencies which govern them. So, following the cheapest route to compliance they encounter the reality that cheap aint easy. On 2/25/03 16:06, Christopher Hummert [EMAIL PROTECTED] wrote: Ok I knew I shouldn't have used that example, cause I knew somewhere we were going to get into a debate about it. In addition I should have said Hydrogen Fuel Cells which is what I was thinking of when I made the statement. As far as the pollution: Fuel cells efficiently convert hydrogen fuel and oxygen from the air into electricity. Hydrogen fuel cell electric vehicles (HFCEVs) emit only water vapor from their exhaust pipes. Demonstrations of HFCEVs have been successful and this technology is expected to displace internal combustion engines in the 21st Century. Which I got from pretty much the first thing I could google up here: http://www.hydrogencomponents.com/altfuel.html -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mellott, Bill Sent: Tuesday, February 25, 2003 2:02 PM To: Exchange Discussions Subject: RE: Exchange server level encryption-OT Chris Im curious how do you figure this statement? Next thing you'll drag in Hybrids ... It's the same problem you have with cars today. Gasoline engines produce pollution, so to change this we could move to hydrogen engines which are pollution free. But the infrastructure isn't there. While I agree hydrogen engines maybe more friendly...they do produce pollution AND the infrastructure you correctly point out which is not there really WILL in fact produce pollution to make the pieces/stuff required for the cleaner part. Let me ask this..IF say you put a refrigerator in a sealed room...plug it in...leave the Fridge door openwhat happens in the room? there no free lunch...just more healthy... ;-) bill -Original Message- From: Christopher Hummert [mailto:[EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 4:42 PM To: Exchange Discussions Subject: RE: Exchange server level encryption Except that none of our clients have heard about PGP. That's one of the problems with HIPPA, the solutions they want don't exist for a device that was developed back in the 60's (I think I got the time right, I'm not going to check though). It's the same problem you have with cars today. Gasoline engines produce pollution, so to change this we could move to hydrogen engines which are pollution free. But the infrastructure isn't there. Same thing with e-mail and encryption. That's one of the reasons HIPPA deadlines keeps getting pushed back. Then with a solution like PGP you have to teach the users how to use it. That's a nightmare that I don't ever want to repeat again. Hell half of the users I taught have a hard time figuring out what the start button is, and it's right there in front of their face. The big problem with HIPPA was that it was designed by bureaucrats (who BTW were probably the same users that have a hard time with the start button thing) that wanted to do something to protect the people that vote for them. Except there wasn't a major problem to begin with. Sure there were a few slight mishaps here and there, but the industry was doing a fine job of learning from those mistakes and creating new solutions to prevent those from happening again. In addition to the design problems with HIPPA, you have the fact that it's become so bloated that no one knows exactly what
Re: Exchange server level encryption-OT
Oh my God. The humanity. The humanity. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Chris Scharff [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 8:17 PM Subject: Re: Exchange server level encryption-OT What if the shipping company uses hydrogen fuel cells? On 2/25/03 18:39, Patrick R. Sweeney [EMAIL PROTECTED] wrote: HIPAA does provide detail for securing non-electronic transmission of Personal information. Basically -- it has to be sealed and trackable (Rewgistered mail, UPS, FedEx, etc.) There is information and instruction available at http://www.hipaa.org and http://www.ahima.org. AHIMA also provides a series of online classes for $1100 which provide a form of individual IT HIPAA accreditation. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Chris Scharff [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 7:09 PM Subject: Re: Exchange server level encryption-OT Not an expert on the science behind this essay http://tnr.com/docprint.mhtml?i=20030224=easterbrook022403 http://tnr.com/docprint.mhtml?i=20030224s=easterbrook022403 , but the idea of needing to use nuclear power plants to product the levels of hydrogen needed for 'clean fuel cells' seems to make the water is the only byproduct argument a bit disingenuous. Course as I said, I'm not an expert on the subject so I'm certainly open to knowing where the levels of hydrogen needed for such a thing would come from. Perhaps instead of replacing HIPPA, those companies subject to its regulations need to rethink how and why patient data would need to leave their environment and design secure systems (which e-mail aint) to facilitate that transmittal. Course the reality is companies aren't really interested in protecting patient data, just in being compliant with the various regulatory agencies which govern them. So, following the cheapest route to compliance they encounter the reality that cheap aint easy. On 2/25/03 16:06, Christopher Hummert [EMAIL PROTECTED] wrote: Ok I knew I shouldn't have used that example, cause I knew somewhere we were going to get into a debate about it. In addition I should have said Hydrogen Fuel Cells which is what I was thinking of when I made the statement. As far as the pollution: Fuel cells efficiently convert hydrogen fuel and oxygen from the air into electricity. Hydrogen fuel cell electric vehicles (HFCEVs) emit only water vapor from their exhaust pipes. Demonstrations of HFCEVs have been successful and this technology is expected to displace internal combustion engines in the 21st Century. Which I got from pretty much the first thing I could google up here: http://www.hydrogencomponents.com/altfuel.html -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mellott, Bill Sent: Tuesday, February 25, 2003 2:02 PM To: Exchange Discussions Subject: RE: Exchange server level encryption-OT Chris Im curious how do you figure this statement? Next thing you'll drag in Hybrids ... It's the same problem you have with cars today. Gasoline engines produce pollution, so to change this we could move to hydrogen engines which are pollution free. But the infrastructure isn't there. While I agree hydrogen engines maybe more friendly...they do produce pollution AND the infrastructure you correctly point out which is not there really WILL in fact produce pollution to make the pieces/stuff required for the cleaner part. Let me ask this..IF say you put a refrigerator in a sealed room...plug it in...leave the Fridge door openwhat happens in the room? there no free lunch...just more healthy... ;-) bill -Original Message- From: Christopher Hummert [mailto:[EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 4:42 PM To: Exchange Discussions Subject: RE: Exchange server level encryption Except that none of our clients have heard about PGP. That's one of the problems with HIPPA, the solutions they want don't exist for a device that was developed back in the 60's (I think I got the time right, I'm not going to check though). It's the same problem you have with cars today. Gasoline engines produce pollution, so to change this we could move to hydrogen engines which are pollution free. But the infrastructure isn't there. Same thing with e-mail and encryption. That's one of the reasons HIPPA deadlines keeps getting pushed back. Then with a solution like PGP you have to teach the users how to use it. That's a nightmare that I don't ever want to repeat again. Hell half of the users I taught have a hard time figuring out what the start button is, and it's right there in front of their face
Re: How do you get a hardcopy list?
you can do a Mail Merge in Word, using your Outlook Contacts as a data source. Unfortunately, Word's Mail Merge feature is one of its least user-friendly, and the Wizard in Office XP isn't much better. Also, last I checked Word is pulling an address book, so you'll have to have the Outlook Address Book set up and looking at the Contacts as an address book (which I believe is part of a default install anyway.) -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Avi Smith-Rapaport [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Monday, February 24, 2003 8:18 AM Subject: RE: How do you get a hardcopy list? How would you set up mailing labels off of your contact list? Or would exchange using outlook not be a good place to do this from? Avi -Original Message- From: Exchange Mailing List [mailto:[EMAIL PROTECTED] Sent: Thursday, February 20, 2003 4:18 PM To: Exchange Discussions Subject: RE: How do you get a hardcopy list? I've had great success with this: http://www.uwsp.edu/it/exchange/client_ext/export/export.html This is what it does: * Installs itself into the Tools menu, under Customize Toolbar. * Allows exporting of Distribution List members, from any available container, to a message which is put in your Inbox. * Allows exporting of mailbox properties (e.g., address, description, etc.) to a message which is put in your Inbox. * Both Distribution List export and mailbox property export can be added to a customized toolbar. You can then take that result, print it out, email it to someone else, etc.. Joe -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED] Sent: Monday, February 17, 2003 1:51 PM To: Exchange Discussions Subject: RE: How do you get a hardcopy list? Export the list using directory export specifying the Members field. Note, however, the names will show in their X500 notation. Such a utility could be scripted. Perhaps something already exists on http://www.cdolive.com or http://www.slipstick.com. Ed Crowley MCSE+Internet MVP Freelance E-Mail Philosopher Protecting the world from PSTs and Bricked Backups!T -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mitchell Mike Sent: Monday, February 17, 2003 11:48 AM To: Exchange Discussions Subject: How do you get a hardcopy list? Good afternoon, Outlook 98 NT 4.0 SP4 How do you get a hardcopy list of the names in a distribution list? I have tried everything I could, and could not get it. Thanks. Mike Mitchell Systems email Administrator Alverno Information Services [EMAIL PROTECTED] (317) 532-7800 ext. 6211 _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] Confidentiality Statement The information contained in this electronic message is attorney privileged and confidential information intended only for the use of the owner of the email address listed as the recipient of this message. If you are not the intended recipient, or the employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any disclosure, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this transmission in error, please immediately notify us by telephone at 504-586-1200 and return the original message to us at McGlinchey Stafford*643 Magazine St.*New Orleans,*LA*70130 via the United States Postal Service. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: How do you get a hardcopy list?
ACT or Goldmine.are worth considering. It depends largely on what you want to be able to do with your contacts. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Avi Smith-Rapaport [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Monday, February 24, 2003 9:22 AM Subject: RE: How do you get a hardcopy list? Ouch. Any thoughts on other applications and/or whatnot to use? I created an access database to do it, but would like to find something off the shelf easier to use? Avi -Original Message- From: Patrick R. Sweeney [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 8:44 AM To: Exchange Discussions Subject: Re: How do you get a hardcopy list? you can do a Mail Merge in Word, using your Outlook Contacts as a data source. Unfortunately, Word's Mail Merge feature is one of its least user-friendly, and the Wizard in Office XP isn't much better. Also, last I checked Word is pulling an address book, so you'll have to have the Outlook Address Book set up and looking at the Contacts as an address book (which I believe is part of a default install anyway.) -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Avi Smith-Rapaport [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Monday, February 24, 2003 8:18 AM Subject: RE: How do you get a hardcopy list? How would you set up mailing labels off of your contact list? Or would exchange using outlook not be a good place to do this from? Avi -Original Message- From: Exchange Mailing List [mailto:[EMAIL PROTECTED] Sent: Thursday, February 20, 2003 4:18 PM To: Exchange Discussions Subject: RE: How do you get a hardcopy list? I've had great success with this: http://www.uwsp.edu/it/exchange/client_ext/export/export.html This is what it does: * Installs itself into the Tools menu, under Customize Toolbar. * Allows exporting of Distribution List members, from any available container, to a message which is put in your Inbox. * Allows exporting of mailbox properties (e.g., address, description, etc.) to a message which is put in your Inbox. * Both Distribution List export and mailbox property export can be added to a customized toolbar. You can then take that result, print it out, email it to someone else, etc.. Joe -Original Message- From: Ed Crowley [mailto:[EMAIL PROTECTED] Sent: Monday, February 17, 2003 1:51 PM To: Exchange Discussions Subject: RE: How do you get a hardcopy list? Export the list using directory export specifying the Members field. Note, however, the names will show in their X500 notation. Such a utility could be scripted. Perhaps something already exists on http://www.cdolive.com or http://www.slipstick.com. Ed Crowley MCSE+Internet MVP Freelance E-Mail Philosopher Protecting the world from PSTs and Bricked Backups!T -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mitchell Mike Sent: Monday, February 17, 2003 11:48 AM To: Exchange Discussions Subject: How do you get a hardcopy list? Good afternoon, Outlook 98 NT 4.0 SP4 How do you get a hardcopy list of the names in a distribution list? I have tried everything I could, and could not get it. Thanks. Mike Mitchell Systems email Administrator Alverno Information Services [EMAIL PROTECTED] (317) 532-7800 ext. 6211 _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] Confidentiality Statement The information contained in this electronic message is attorney privileged and confidential information intended only for the use of the owner of the email address listed as the recipient of this message. If you are not the intended recipient, or the employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any disclosure, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this transmission in error, please immediately notify us by telephone at 504-586-1200 and return the original message to us at McGlinchey Stafford*643 Magazine St.*New Orleans,*LA*70130 via the United States Postal Service. _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp
Re: Searching an Exchange 2000 database for a text value
http://www.msexchange.org/tutorials/MF013.html -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Steve Sorenson [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Monday, February 24, 2003 1:29 PM Subject: Searching an Exchange 2000 database for a text value Can anyone tell me if it's possible to search an Exchange 2000 database for a particular text string(s)? I need to extract all messages meeting a certain criteria. We use Promodag for reporting basic email usage, but this will not search the message body. TIA, Steve This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: a bit OT: no disk space
It works w/ HW RAID . -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Ben Schorr [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Monday, February 24, 2003 4:05 PM Subject: RE: a bit OT: no disk space It shouldn't have a problem with HW RAID. With HW RAID all the Raid stuff is done at the hardware level (of course) and the OS/software don't know or care anything about it. -Ben- Ben M. Schorr, MVP-Outlook, CNA, MCPx3 Director of Information Services Damon Key Leong Kupchak Hastert http://www.hawaiilawyer.com -Original Message- From: Chris Levis [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 10:57 AM To: Exchange Discussions Your 2nd point was my D'oh-Factor. NTFS-DOS (the $$ one) does provide rwx. I'm almost certain it wouldn't work with SW raid, but maybe with HW raid. I've never been in a position to try. -Original Message- From: Andrey Fyodorov [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 3:51 PM To: Exchange Discussions Subject: RE: a bit OT: no disk space thanks, I was thinking about that too. I thought that ntfs-dos was read-only but now I am finding some versions that allow read/write still, if it is an NT software RAID, will ntfs-dos recognize the data? -Original Message- From: Chris Levis [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 3:47 PM To: Exchange Discussions Subject: RE: a bit OT: no disk space What about booting into it with ntfs-dos or some other such tool, and making some space? -Original Message- From: Tony Hlabse [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 3:06 PM To: Exchange Discussions Subject: Re: a bit OT: no disk space How does he know that it is out of disk space. I have a friend who has a client that runs WinNT/Exchange 5.5 server. The client provides very few details (because he does not know squat), except that the server does not boot due to lack of disk space. And the server has RAID5 (client does not know if it is hardware or software RAID5). I have not seen this system yet, it is miles away from me and I am not sure if I want to see it. I have a feeling that they are using NT software RAID5. (I also have a feeling that they were not doing any backups and choked on the transaction logs) I am pretty sure I can boot this machine by sticking an IDE drive into it and installing a second copy of NT on it. BUT... I am trying to think logically... it this is a software RAID5... will another copy of NT be able to see the data on the RAID5 that was created by a different installation of NT? Thanks! _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ Protect your PC - get McAfee.com VirusScan Online http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED
Re: a bit OT: no disk space
NTFSDOS uses NT's file system driver, so I don't see why it wouldn't allow access to a RAID partition. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Andrey Fyodorov [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Monday, February 24, 2003 4:49 PM Subject: RE: a bit OT: no disk space me no worry about HW raid. I am afraid that this is a SW raid, so I don't even want to travel to the site to bring them bad news :) -Original Message- From: Patrick R. Sweeney [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 4:29 PM To: Exchange Discussions Subject: Re: a bit OT: no disk space It works w/ HW RAID . -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Ben Schorr [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Monday, February 24, 2003 4:05 PM Subject: RE: a bit OT: no disk space It shouldn't have a problem with HW RAID. With HW RAID all the Raid stuff is done at the hardware level (of course) and the OS/software don't know or care anything about it. -Ben- Ben M. Schorr, MVP-Outlook, CNA, MCPx3 Director of Information Services Damon Key Leong Kupchak Hastert http://www.hawaiilawyer.com -Original Message- From: Chris Levis [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 10:57 AM To: Exchange Discussions Your 2nd point was my D'oh-Factor. NTFS-DOS (the $$ one) does provide rwx. I'm almost certain it wouldn't work with SW raid, but maybe with HW raid. I've never been in a position to try. -Original Message- From: Andrey Fyodorov [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 3:51 PM To: Exchange Discussions Subject: RE: a bit OT: no disk space thanks, I was thinking about that too. I thought that ntfs-dos was read-only but now I am finding some versions that allow read/write still, if it is an NT software RAID, will ntfs-dos recognize the data? -Original Message- From: Chris Levis [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 3:47 PM To: Exchange Discussions Subject: RE: a bit OT: no disk space What about booting into it with ntfs-dos or some other such tool, and making some space? -Original Message- From: Tony Hlabse [mailto:[EMAIL PROTECTED] Sent: Monday, February 24, 2003 3:06 PM To: Exchange Discussions Subject: Re: a bit OT: no disk space How does he know that it is out of disk space. I have a friend who has a client that runs WinNT/Exchange 5.5 server. The client provides very few details (because he does not know squat), except that the server does not boot due to lack of disk space. And the server has RAID5 (client does not know if it is hardware or software RAID5). I have not seen this system yet, it is miles away from me and I am not sure if I want to see it. I have a feeling that they are using NT software RAID5. (I also have a feeling that they were not doing any backups and choked on the transaction logs) I am pretty sure I can boot this machine by sticking an IDE drive into it and installing a second copy of NT on it. BUT... I am trying to think logically... it this is a software RAID5... will another copy of NT be able to see the data on the RAID5 that was created by a different installation of NT? Thanks! _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ Protect your PC - get McAfee.com VirusScan Online http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin
Re: Exchange 2000 OWA Cisco PIX 515
It will take the hacker five, maybe six seconds longer to run a port scan. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Ely, Don [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Friday, February 21, 2003 7:35 PM Subject: RE: Exchange 2000 OWA Cisco PIX 515 The PIX will do what you want, but what's the use... -Original Message- From: Pillai, Raj [mailto:[EMAIL PROTECTED] Sent: Friday, February 21, 2003 10:34 AM To: Exchange Discussions Subject: Exchange 2000 OWA Cisco PIX 515 Hello Everyone, Here is a scenario: Exchange 2000 FE and BE configuration behind a PIX 515 firewall. FE Server is just for OWA, so that External users can access their email offsite. It works perfectly with the necessary ports enabled( 80,443,143,993).However, it is not desirable to leave 80 accessible due to potential security risk. My long-term solution is an ISA Server in the DMZ. In the interim, is there a way to configure the PIX 515 for Port address translation? I am speculating that on the PIX we can assign a different port number( e.g. port 8800..any port)and let the PIX resolve/translate/forward all requests to Port 80. My Network Administrator does not think the PIX 515 is compliant. Is there anyone in this group who has a similar environment? Thanks and happy Friday! Raj ** This e-mail message, including any attachments, contains information that is confidential, may be protected by the attorney/client or other applicable privileges, and may constitute non-public information. This message is intended to be conveyed only to the designated recipient(s). If you are not the intended recipient of this message, do not read it; please immediately notify the sender that you have received this message in error and delete this message.Unauthorized use, disclosure, dissemination, distribution, reproduction of this message or the information contained in this message or the taking of any action in reliance on it is strictly prohibited and may be unlawful. Thank you for your cooperation. ** _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]
Re: two Internet address?
Yes, it is a good idea. The ISP needs to be set up to store and forward the messages (search on ETRN), your server needs to be set up to retrieve the stored messages, either over the internet or via dial-up, and the MX records cost should be set so that the connection is only used if the first two are unavailable. To find which server is not allowing the relay (I'm guessing it's the ISP) try the following: Open a Telnet seeion to port 25 of each server HELO xyz.com Mail From:[EMAIL PROTECTED] RCPT TO:[EMAIL PROTECTED] DATA test . QUIT Which one barks about relaying. If it is the ISP then remove the record for now, and work with them to set up relaying appropriately. If it is yours -- fix it. -Patrick R. Sweeney http://boston.craigslist.org/bos/res/8484283.html - Original Message - From: Jojo Solis [EMAIL PROTECTED] To: Exchange Discussions [EMAIL PROTECTED] Sent: Thursday, February 20, 2003 12:29 AM Subject: two Internet address? all, is it good idea to have Two deffirent Internet address that point to diffirent ISP for an email server? one address is a backup just incase my link to one ISP goes down.please see sample below: mycompany.com.ph mail exchange=5 myserver.mycompany.com.ph mycompany.com.ph mail exchange=10 myserver.mycompany.com.ph mycompany.com.ph mail exchange=15 mail.myISP.com myserver.mycompany.com.ph=203.167.XXX.XXX myserver.mycompany.com.ph=202.138.XXX.XXX i want to remove one of those Internet address, i believe its the cause why some messages bounced back with error message Relay access denied. Thanks jojo _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED] _ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin:[EMAIL PROTECTED]