1 / 27

Section 12: Fighting Spam, Viruses, and Hacks

Microsoft Exchange Server 2003. Section 12: Fighting Spam, Viruses, and Hacks. Unsolicited Commercial E-Mail Securing SMTP Virtual Servers Antivirus Solutions Encrypting and Digitally Signing Messages. Section Objectives. 12-2. After completing this section, you will be able to:

kalyca
Télécharger la présentation

Section 12: Fighting Spam, Viruses, and Hacks

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Microsoft Exchange Server 2003 Section 12: Fighting Spam, Viruses, and Hacks Unsolicited Commercial E-Mail Securing SMTP Virtual Servers Antivirus Solutions Encrypting and Digitally Signing Messages

  2. Section Objectives 12-2 After completing this section, you will be able to: • List the new filters available in Exchange Server 2003 • Configure connection filters • Configure sender filters • Apply filters to virtual servers • Restrict access to SMTP virtual servers • Name the four types of Antivirus solutions for Exchange Server 2003 • Identify the benefits to the latest version of the VSAPI • Name the template used for encrypting mail • Configure Outlook and OWA 2003 to use S/MIME

  3. Connection Filters 12-4 • Reverse DNS RBL Services • Open Relays • Dial-up/dynamic IP ranges • Spam sources • Multi-stage open relays • Systems with insecure CGI scripts • Open proxy servers Spamhaus Yes SpamCop Yes DSBL Yes

  4. Sender Filters – Blocking Known Spammers 12-6 www.spamhaus.org www.spamsites.org RBL (Real Time Block List) www.mail-abuse.org $ www.dsbl.org free www.spamcop.net free www.njabl.org free @spamdomain.com

  5. Recipient Filter 12-8

  6. Exchange Intelligent Mail Filter 12-9

  7. Sender ID Filtering 12-11

  8. Applying Filters 12-13

  9. IP Address Restrictions 12-15

  10. Access Control 12-16

  11. Relaying 12-17

  12. File-Level Solutions 12-18

  13. MAPI Solutions 12-20 Clean infected messages Scan Log on MAPI-based antivirus solution MAPI client Mailbox store

  14. VSAPI Solutions 12-21 VSAPI antivirus solution Virus scanning API 2.5 On demand scan Clean infected messages Proactive scanning Mailbox store

  15. store.exe ESE Extensible Storage Engine Solutions 12-22 Clean infected messages Replace native ese.dll Third-party ese.dll Mailbox store ESE antivirus solution

  16. SMTP Gateway Solution 12-23 Exchange Server 2003 SMTP gateway antivirus solution Internet mail Clean infected messages

  17. Configure Certificate Authority for S/MIME 12-24

  18. Enabling S/MIME on Information Stores 12-25

  19. Enrolling Users 12-26

  20. Certificate in Active Directory 12-27

  21. Configure Outlook 2003 for S/MIME 12-28

  22. Configure OWA for S/MIME 12-29

  23. List the new filters available in Exchange Server 2003. What is the purpose of the connection filter? What are block lists and global lists? Section Review 12-31 • You can now filter based on connection, sender, and recipient. • To search a list of SMTP domains to find if the inbound connection is coming from a well-known source of unsolicited mail. • Block lists: is a 3rd party list that work by scanning the Internet for one of three types of SMTP domains: Well-known spam domains, Open relays, or Dial-up/ISP domains • Global Lists: If you do not want to subscribe to a block list provider or you want to supplement the block list you can create your own accept or deny global lists. You can block or allow based on individual e-mail addresses or you can block or allow entire SMTP domains.

  24. What are sender filters used for? How do you enable new filters on an SMTP virtual server? Section Review 12-31/32 • It is used to block mail from a particular SMTP address before it gets to the intended recipient and/or to archive the mail sent by a particular SMTP address. • In order for the new filters you have configured to take effect, you must enable them on an SMTP virtual server. This is done by viewing the properties of the virtual server, and on the General page clicking the Advanced button. Then you must select an interface that you want to apply the filter to. Once you select an interface, edit the interface and add any or all of the filters that you want to be used on this virtual server.

  25. What is an open relaying? Which Exchange folder should not be scanned with the file system antivirus solutions? Section Review (cont.) 12-32 • It is an SMTP host that allows anonymous users to send e-mail. • Because there are so many critical files that should not be scanned with file system antivirus solutions, it is a good idea to avoid scanning the Exchsrvr folder altogether.

  26. List the benefits to the latest version of the VSAPI. What is the purpose of the SMTP gateway solution? Section Review (cont.) 12-32 • Gateway and bridgehead server support • New send and delete message capabilities • Integrated with message delivery filters • Proactive scanning (VSAPI 2.0 and VSAPI 2.5) • The concept behind the gateway solution is to scan for viruses, spam, and hacks before they have the chance to get to an Exchange Server 2003 server.

  27. The default in Exchange Server 2003 is to allow all information stores to support S/MIME encryption in the Exchange databases. True False What is a user certificate good for? Outlook Web Access is configured by default to work with S/MIME. True False Section Review (cont.) 12-32/33 • This certificate will be good for both encrypting and digitally signing their e-mail.

More Related