I'm running an exchange 2000 server and I think someone may be using the exchange server to send mail using smtp. The system was originally setup by a consultant. Can someone tell me first how to be sure and second how to prevent this from happening. I looked at the smtp virtual settings under virtual server and these are some of the settings which have me concerned. Under |Access Control|Authenticate the following items are checked: Anonymous Access, Basic Authentication, Integrated Windows Authentication. (The only users that I need to have the ability to send messages are those within my domain which are connecting using Outlook and some via OWA.) How does exchange use authentication when it comes to sending and recieving smtp mail?? Another setting that has me concerned is under Relay Restrictions which has the following option checked: Allow all computers which successfully authenticate to relay, regardless of the list above. Are these settings correct for my environment using Outlook and OWA? Any help would be greatly appreciated.
GP
