(e)Mail Insecurity

Devin talks about several Exchange certificate-related tidbits.

posted @ Friday, May 09, 2008 4:55 PM | Feedback (0)

ISA Server rules for segregating Exchange 2007 Edge and Hub Transport

As promised, Devin explains the three rules you need in ISA Server to properly secure communications between the Exchange 2007 Edge server in the perimeter network and the Hub Transport servers in the internal network.

posted @ Thursday, January 11, 2007 7:11 AM | Feedback (3)

One interface or two: an Edge case

The release Exchange 2007 docs advocate a curious two-interface configuration for the Edge server. Devin examines this advice and fails to find the sense in it.

posted @ Thursday, January 11, 2007 4:21 AM | Feedback (3)

Don't overlook this feature of Exchange 2007

posted @ Wednesday, January 10, 2007 1:09 AM | Feedback (3)

Maybe now the PIX SMTP screener won't suck

posted @ Saturday, January 06, 2007 5:53 AM | Feedback (0)

Exchange 2007 Edge and ISA 2006 on the same box???

posted @ Tuesday, November 21, 2006 9:25 AM | Feedback (1)

Forefront's Worm List

posted @ Friday, November 03, 2006 7:37 PM | Feedback (1)

Free greylisting for Exchange Server 2003!

posted @ Friday, November 03, 2006 7:00 PM | Feedback (5)

The 64-bit Vista Kernel furball

posted @ Wednesday, October 25, 2006 4:38 PM | Feedback (0)

Your default Exchange 2007 hub transport receive connectors

posted @ Thursday, October 19, 2006 8:13 PM | Feedback (0)

How I Spent My Summer Vacation: perspectives on Gone Phishing

posted @ Thursday, September 28, 2006 12:30 PM | Feedback (0)

Jim McBee on secure messaging

posted @ Thursday, August 10, 2006 1:43 PM | Feedback (0)

TCP port 25 considered harmful?

Mailing lists are a great resource, even in this Latter-Day Dispensation of Search Engines and Web Forums. While web forums have their place, there's nothing like being able to carry on an extended conversation in the comfort of your own Inbox. I was inspired by a drive-by comment on a recent thread I participated in to take a step back and examine the practice of port-blocking TCP 25, which is the port used by the Simple Mail Transfer Protocol (SMTP).

posted @ Monday, August 07, 2006 11:20 AM | Feedback (2)

Which version of Powershell do I need for Exchange 2007?

posted @ Friday, August 04, 2006 3:00 PM | Feedback (0)

HTTP over HTTP! (No joke!)

posted @ Tuesday, August 01, 2006 11:03 AM | Feedback (2)

So long, Mom -- I'm off to drop the bomb -- so don't wait up for me!

posted @ Tuesday, August 01, 2006 10:45 AM | Feedback (0)

Another reason to evaluate Exchange 2007 on x64 if you can

posted @ Monday, July 24, 2006 2:00 PM | Feedback (1)

Deployment Guidance for Exchange 2003 SP2 and Windows Mobile 5.0 MSFP

posted @ Tuesday, April 04, 2006 4:43 AM | Feedback (0)

Deploy and manage Firefox with...Active Directory Group Policy?

posted @ Tuesday, April 04, 2006 4:32 AM | Feedback (3)

Anti-spam with Exchange 2003

posted @ Saturday, April 01, 2006 6:23 PM | Feedback (3)

An update on Windows Mobile 5.0 certificates

posted @ Thursday, March 23, 2006 11:54 AM | Feedback (2)

A good regulatory compliance resource

posted @ Friday, March 10, 2006 8:59 AM | Feedback (0)

Windows Mobile 5.0 and SSL certs

posted @ Wednesday, February 15, 2006 10:05 AM | Feedback (4)

ISA Server 2004 SP2 is out

posted @ Monday, February 13, 2006 7:36 PM | Feedback (1)

How to bypass Group Policy settings as a non-admin

posted @ Friday, December 16, 2005 8:41 AM | Feedback (2)

ISA Server 2004 Best Practices Analyzer released

posted @ Wednesday, December 14, 2005 4:06 PM | Feedback (1)

And whilst in the throes of insomnia, a book review

posted @ Thursday, December 08, 2005 3:30 AM | Feedback (0)

Dr. Rootkit (or how I learned to get q0wned by Sony and love DRM)

posted @ Thursday, November 03, 2005 3:44 PM | Feedback (0)

Now in print: the Windows NT 4.0 and Windows 98 Threat Mitigation Guide

posted @ Tuesday, October 25, 2005 12:45 PM | Feedback (0)

Well now!

posted @ Monday, October 03, 2005 12:27 PM | Feedback (0)

State of the Hash: the end of SHA-1?

posted @ Friday, August 19, 2005 12:45 PM | Feedback (0)

Mad as hell about Windows security myths

No, not me. My net.friend Alistair. He read this article and got a touch annoyed about some of the untruths and misconceptions present in the article, so he decided to respond. Read his response -- and mine -- in this article.

posted @ Tuesday, June 21, 2005 10:40 AM | Feedback (2)

Exchange Security Update

posted @ Wednesday, April 13, 2005 2:02 AM | Feedback (0)

Keeping up with Microsoft

posted @ Wednesday, April 06, 2005 12:11 PM | Feedback (0)

Windows Server 2003 SP1

posted @ Thursday, March 31, 2005 1:25 PM | Feedback (0)

Upgrading to Service Pack 1 for ISA 2004

posted @ Thursday, March 03, 2005 2:28 PM | Feedback (0)

Important new patch

posted @ Tuesday, February 08, 2005 3:37 PM | Feedback (0)

A further look at Todd Marshall's spam proposal

I read an interesting article on ZDNet today, a proposal ("Spam: leave it to the sender") by Todd Marshall on just what we need to do to fight spam. As soon as I read it, I knew that it would generate a bit of controversy.

The heart of Todd's proposal is simple: change the core e-mail transport strategy from push to pull.

Click on the title to read the whole post.

posted @ Monday, October 11, 2004 9:15 PM | Feedback (2)