RE: Tar Pitting
Pardon my asking, but why would you want to enable/use tar pitting? What does it do other than slow down an SMTP conversation? John H. Matteson, Jr. Systems Administrator/ITT Systems FOB Orgun-E Afghanistan DSN - 318 431 8001 VoSIP - (308) 431 - Iridium - 717.633.3823 Roshain - 079 - 736 - 3832 In the first place, we should insist that if the immigrant who comes here in good faith becomes an American and assimilates himself to us, he shall be treated on an exact equality with everyone else, for it is an outrage to discriminate against any such man because of creed, or birthplace, or origin. But this is predicated upon the person's becoming in every facet an American, and nothing but an American... There can be no divided allegiance here. Any man who says he is an American, but something else also, isn't an American at all. We have room for but one flag, the American flag.. We have room for but one language here, and that is the English language... and we have room for but one sole loyalty and that is a loyalty to the American people. Teddy Roosevelt; 1907 -Original Message- From: Carl Houseman [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 5:49 AM To: MS-Exchange Admin Issues Subject: RE: Tar Pitting When you said it affects all recipients that suggested (to me anyway) that both valid and invalid recipients would have a tarpit delay if tarpitting was enabled. Thank you for clarifying that that is not the case. To give the 100% correct summary: Messages that are accepted and all recipients are valid are not delayed by tarpitting. Carl From: Simon Butler [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2008 8:17 PM To: MS-Exchange Admin Issues Subject: RE: Tar Pitting It is all recipients - because it slows down any response that generates 5.x.x error code. That isn't just invalid recipients - but that is the most common use for its protection. It can also slow down malformed messages to valid recipients as well. http://support.microsoft.com/default.aspx?kbid=842851 Simon. From: Carl Houseman [mailto:[EMAIL PROTECTED] Sent: 06 June 2008 00:28 To: MS-Exchange Admin Issues Subject: RE: Tar Pitting I'm afraid that Carl is 100% correct for Exchange 2003, the version used by the OP. Perhaps a change was made in Exchange 2007, I can't verify that. Carl From: Simon Butler [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2008 5:05 PM To: MS-Exchange Admin Issues Subject: RE: Tar Pitting Where the problems come with tarpitting is when people set the time delay too long. To be effective it doesn't need to be more than 5 seconds. Carl isn't quite 100% correct in its behaviour. It affects all recipients, valid or not. The idea is that a spammer is slowed down when carrying out a directory harvest attack. I personally feel that you shouldn't enable recipient filtering without tarpit. Tarpit is enabled by default in Exchange 2007. Simon. -- Simon Butler MVP: Exchange, MCSE Amset IT Solutions Ltd. e: [EMAIL PROTECTED] w: www.amset.co.uk w: www.amset.info Need cheap certificates for Exchange, compatible with Windows Mobile 5.0? http://CertificatesForExchange.com/ for certificates from just $23.99. Need a domain for your certificate? http://DomainsForExchange.net/ From: Don Andrews [mailto:[EMAIL PROTECTED] Sent: 05 June 2008 21:25 To: MS-Exchange Admin Issues Subject: RE: Tar Pitting Got it - it's not IP based but single message based - if that makes sense. thanks From: Carl Houseman [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2008 1:16 PM To: MS-Exchange Admin Issues Subject: RE: Tar Pitting What is there to remember? Tarpitting is simply this: If you (the sending smtp server) tell me an invalid recipient, I am going to wait for the tarpit delay time before I reject it and allow you to continue the smtp conversation with me. From: Don Andrews [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2008 4:10 PM To: MS-Exchange Admin Issues Subject: RE: Tar Pitting So, the tar pitting component does not remember from one message to the next - even in the same connection? From: Carl Houseman [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2008 1:05 PM To: MS-Exchange Admin Issues Subject: RE: Tar Pitting The only way I can fathom that legitimate mail could be affected would be when a message contains both valid and invalid recipients. This particular message would be delayed for the valid recipients by (number of invalid recipients) * (tarpit delay time). Unless there are dozens of invalid recipients included in this message, the delay would not be significant. Carl From: Bill Lambert [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2008 1:57 PM To: MS-Exchange Admin Issues Subject: RE: Tar Pitting Thanks, Carl. I
RE: Tar Pitting
Pardon my asking, but why would you want to enable/use tar pitting? What does it do other than slow down an SMTP conversation? http://www.msexchange.org/tutorials/Windows-based-SMTP-Tar-Pitting-Explained.html ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
BES newbie question
Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it. ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
BES needs to be at the same parch level as your Exchange servers(s). ESM is Exchange w\o the DBs. Shook From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 10:57 AM To: MS-Exchange Admin Issues Subject: BES newbie question ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
Make sure CDO.DLL and MAPI32.DLL are the same versions on the BES and on your Exchange server (which should be separate physical servers) Right-click on each, goto version tab to verify. I think they are usually located in c:\program files\exchsrvr\bin... or something like that. Also, not sure how you are activating your BB, but I always manually create a password. I never generate and email a password. What version of BES? 4.2? HTH From: Stefan Jafs [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 11:07 AM To: MS-Exchange Admin Issues Subject: RE: BES newbie question Make sure all the BlackBerry services are running, on my BES server I have to restart some of them manually every time I re-start the server! __ Stefan Jafs From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 10:57 To: MS-Exchange Admin Issues Subject: BES newbie question Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it. This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of Amico Corporation . Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
Right. Equal patching is important. Second, make sure you have your permissions setup properly. Third, make sure your devices are on the proper Blackberry plan. Typically called a BB Enterprise plan. I'm currently transitioning about 40 BB users from BIS to BES and that's part of the transition. Getting them on the right plan. From: Andy Shook [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 8:07 AM To: MS-Exchange Admin Issues Subject: RE: BES newbie question BES needs to be at the same parch level as your Exchange servers(s). ESM is Exchange w\o the DBs. Shook _ From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 10:57 AM To: MS-Exchange Admin Issues Subject: BES newbie question ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
I found that an anti-spam or antivirus program can cause activation not to occur. If I recall correctly, Symantec Mail Security (which I no longer use) was deleting the attachment on the activation emails. Therefore, none of the blackberries would activate. I believe I had to make an exclusion, but I can't recall since it was a couple years ago. Bob Fronk [EMAIL PROTECTED] From: David Mazzaccaro [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 11:13 AM To: MS-Exchange Admin Issues Subject: RE: BES newbie question Make sure CDO.DLL and MAPI32.DLL are the same versions on the BES and on your Exchange server (which should be separate physical servers) Right-click on each, goto version tab to verify. I think they are usually located in c:\program files\exchsrvr\bin... or something like that. Also, not sure how you are activating your BB, but I always manually create a password. I never generate and email a password. What version of BES? 4.2? HTH From: Stefan Jafs [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 11:07 AM To: MS-Exchange Admin Issues Subject: RE: BES newbie question Make sure all the BlackBerry services are running, on my BES server I have to restart some of them manually every time I re-start the server! __ Stefan Jafs From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 10:57 To: MS-Exchange Admin Issues Subject: BES newbie question Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it. This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of Amico Corporation . Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
Re: BES newbie question
Yah Martin, I just emailed my telus rep and she said she will need to make a change to the account, so that might be the issue. Thanks for all the suggestions. I already checked the perms, etc... On Fri, Jun 6, 2008 at 10:15 AM, Martin Blackstone [EMAIL PROTECTED] wrote: Right. Equal patching is important. Second, make sure you have your permissions setup properly. Third, make sure your devices are on the proper Blackberry plan. Typically called a BB Enterprise plan. I'm currently transitioning about 40 BB users from BIS to BES and that's part of the transition. Getting them on the right plan. *From:* Andy Shook [mailto:[EMAIL PROTECTED] *Sent:* Friday, June 06, 2008 8:07 AM *To:* MS-Exchange Admin Issues *Subject:* RE: BES newbie question BES needs to be at the same parch level as your Exchange servers(s). ESM is Exchange w\o the DBs. Shook -- *From:* Steve Ens [mailto:[EMAIL PROTECTED] *Sent:* Friday, June 06, 2008 10:57 AM *To:* MS-Exchange Admin Issues *Subject:* BES newbie question ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
Last but not least, If this is your first install of BES you get 30 days of free install support from RIM. What the others have said will probably get you on track, but if it doesn't, make the call. -troy From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 7:57 AM To: MS-Exchange Admin Issues Subject: BES newbie question Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it. ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
Re: BES newbie question
Yes I manually created the pw. This is version 4.1 I believe. MY cdo is at 10/4/2005 on the BES, but 12/14/06 on the exchange server...I'll have to find a patch I guess. On Fri, Jun 6, 2008 at 10:12 AM, David Mazzaccaro [EMAIL PROTECTED] wrote: Make sure CDO.DLL and MAPI32.DLL are the same versions on the BES and on your Exchange server (which should be separate physical servers) Right-click on each, goto version tab to verify. I think they are usually located in c:\program files\exchsrvr\bin… or something like that. Also, not sure how you are activating your BB, but I always manually create a password. I never generate and email a password. What version of BES? 4.2? HTH -- *From:* Stefan Jafs [mailto:[EMAIL PROTECTED] *Sent:* Friday, June 06, 2008 11:07 AM *To:* MS-Exchange Admin Issues *Subject:* RE: BES newbie question Make sure all the BlackBerry services are running, on my BES server I have to restart some of them manually every time I re-start the server! *__* *Stefan Jafs* *From:* Steve Ens [mailto:[EMAIL PROTECTED] *Sent:* Friday, June 06, 2008 10:57 *To:* MS-Exchange Admin Issues *Subject:* BES newbie question Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it. This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of Amico Corporation . Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
Re: BES newbie question
Duh. or just copy the one from the Exch2003sp2 server over...Sorry I drove the scooter in this morning in the pouring rain...I am still wet and the brain isn't working 100% yet. Need coffee. On Fri, Jun 6, 2008 at 10:21 AM, Steve Ens [EMAIL PROTECTED] wrote: Yes I manually created the pw. This is version 4.1 I believe. MY cdo is at 10/4/2005 on the BES, but 12/14/06 on the exchange server...I'll have to find a patch I guess. On Fri, Jun 6, 2008 at 10:12 AM, David Mazzaccaro [EMAIL PROTECTED] wrote: Make sure CDO.DLL and MAPI32.DLL are the same versions on the BES and on your Exchange server (which should be separate physical servers) Right-click on each, goto version tab to verify. I think they are usually located in c:\program files\exchsrvr\bin… or something like that. Also, not sure how you are activating your BB, but I always manually create a password. I never generate and email a password. What version of BES? 4.2? HTH -- *From:* Stefan Jafs [mailto:[EMAIL PROTECTED] *Sent:* Friday, June 06, 2008 11:07 AM *To:* MS-Exchange Admin Issues *Subject:* RE: BES newbie question Make sure all the BlackBerry services are running, on my BES server I have to restart some of them manually every time I re-start the server! *__* *Stefan Jafs* *From:* Steve Ens [mailto:[EMAIL PROTECTED] *Sent:* Friday, June 06, 2008 10:57 *To:* MS-Exchange Admin Issues *Subject:* BES newbie question Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it. This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of Amico Corporation . Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
Just copy and replace (after renaming the old one - never hurts to keep the files in case of disaster) from the newer version (wherever that one is) John W. Cook System Administrator Partnership For Strong Families 315 SE 2nd Ave Gainesville, Fl 32601 Office (352) 393-2741 x320 Cell (352) 215-6944 Fax (352) 393-2746 MCSE, MCTS, MCP+I,CompTIA A+, N+ From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 11:21 AM To: MS-Exchange Admin Issues Subject: Re: BES newbie question Yes I manually created the pw. This is version 4.1 I believe. MY cdo is at 10/4/2005 on the BES, but 12/14/06 on the exchange server...I'll have to find a patch I guess. On Fri, Jun 6, 2008 at 10:12 AM, David Mazzaccaro [EMAIL PROTECTED]mailto:[EMAIL PROTECTED] wrote: Make sure CDO.DLL and MAPI32.DLL are the same versions on the BES and on your Exchange server (which should be separate physical servers) Right-click on each, goto version tab to verify. I think they are usually located in c:\program files\exchsrvr\bin... or something like that. Also, not sure how you are activating your BB, but I always manually create a password. I never generate and email a password. What version of BES? 4.2? HTH From: Stefan Jafs [mailto:[EMAIL PROTECTED]mailto:[EMAIL PROTECTED]] Sent: Friday, June 06, 2008 11:07 AM To: MS-Exchange Admin Issues Subject: RE: BES newbie question Make sure all the BlackBerry services are running, on my BES server I have to restart some of them manually every time I re-start the server! __ Stefan Jafs From: Steve Ens [mailto:[EMAIL PROTECTED]mailto:[EMAIL PROTECTED]] Sent: Friday, June 06, 2008 10:57 To: MS-Exchange Admin Issues Subject: BES newbie question Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it. This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of Amico Corporation . Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
Every Exchange patch you put on the Exchange server, you need to put on the BES. This will be done automatically w/ Microsoft Update - IF - you install Exchange System Manager on the BES. - Or - I *think* you can just copy the CDO.DLL and MAPI32.DLL files from Exchange to BES and register them /w regsvr32. But I have ESM on my BES - and I believe it is a requirement. From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 11:21 AM To: MS-Exchange Admin Issues Subject: Re: BES newbie question ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
Re: Outbound Email Filtering
Oh yes, we also prevent outbound relay except by authorized systems. This has prevented infected systems from sending outbound infected emails through our systems. We have an internal DNS CNAME for our org, mail.sample.com that points to the Exchange bridgehead. As a CNAME it allows us to move the relay should we need to in a way that reduces/mitigates disruption that would occur for hard coded ip addresses. On Thu, Jun 5, 2008 at 9:33 AM, Steven Peck [EMAIL PROTECTED] wrote: We do. We have to comply with HIPAA regulations and sending PHI (personal health information) unsecured outside our company would be a bad thing for us. As a result we scan for a number of message criteria such as SSN, Birth date, various other key terms to prevent calls to our PHI compliance officer. We use some products from Tumbleweed. Very expensive. At this point we bounce back to the sender any message that trigger the filter and kick a copy of the message to the compliance group. We have a manual keyword trigger that's supposed to be there to encrypt messages and we have one to 'bypass' the filters but that also kicks a copy of the message to the compliance team. This has occasionally resulted in discussions with people who 'should know better' and they then find out that they 'will not do this again' in an uncomfortable meeting. Steven Peck - http://www.blkmtn.org On Thu, Jun 5, 2008 at 9:18 AM, Don Ely [EMAIL PROTECTED] wrote: We do On Wed, Jun 4, 2008 at 5:05 PM, JB [EMAIL PROTECTED] wrote: All- Question I have, more like a survey.. How many people filter outbound email to the internet? Thanks, _ John Bowles ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
Re: BES newbie question
It's not really a problem if your CDO on the BES is a higher version then the one on your Exchange. If Exchange CDO is higher version then you will have problems. However, it does bring up why your Exchange version is less then your BES version. :) Treat your BES server and client like you would your admin install. If you patch your Exchange sever, patch your BES server. On Fri, Jun 6, 2008 at 8:35 AM, David Mazzaccaro [EMAIL PROTECTED] wrote: Every Exchange patch you put on the Exchange server, you need to put on the BES. This will be done automatically w/ Microsoft Update - IF - you install Exchange System Manager on the BES. - Or - I *think* you can just copy the CDO.DLL and MAPI32.DLL files from Exchange to BES and register them /w regsvr32. But I have ESM on my BES - and I believe it is a requirement. From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 11:21 AM To: MS-Exchange Admin Issues Subject: Re: BES newbie question ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
Yup. I use WU / WSUS. If your Exchange server is all up to date via those mechanisms, run the same on your BES server and it should sync you up. In not really sure if those would have any impact on activation, but they can sure cause you calendaring headaches. Up to and including corrupted events. From: David Mazzaccaro [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 8:35 AM To: MS-Exchange Admin Issues Subject: RE: BES newbie question Every Exchange patch you put on the Exchange server, you need to put on the BES. This will be done automatically w/ Microsoft Update - IF - you install Exchange System Manager on the BES. - Or - I *think* you can just copy the CDO.DLL and MAPI32.DLL files from Exchange to BES and register them /w regsvr32. But I have ESM on my BES - and I believe it is a requirement. _ From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 11:21 AM To: MS-Exchange Admin Issues Subject: Re: BES newbie question ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: Hosting Multiple domains in Exchange 2003
I am using zoneedit.com to host the DNS for all of the sites, I made the changes to these 2 domains, along with 5 others over 3 weeks ago. I haven't changed any entries since then so it worries me that you saw different A records. We are doing the actual hosting of the sites. When pinging these 2 sites I get could not find host Nslookup hits our DNS server and returns a non-existent domain even after clearing the cache. I can telnet to the hosting system on port 80 no problem, in addition this same system is hosting other sites which I can access without any trouble. I really think it's a DNS issue and I'm beginning to think it's with our ISP. I use the same ISP for my cable modem at home and have the same issues accessing the sites, however the coffee shop I visit in the morning uses Verizon DSL and I never have an issue getting to any of the sites we host. Turns out something is hosed with our ISP's DNS server. They are currently looking into it. Jonathan Gruber Network Administrator J.B. Long Inc. 610-944-8840 x.213 484-637-1978 direct As I recall, last night, a lookup for www.moyersconstruction.com vs moyersconstruction.com returned two different A records. Likewise for sealcoatmydrive.com. It might have been a mistake on the part of whoever you have doing your hosting. Right now, I get the same A record for both of them, so perhaps it has been fixed. Try again. If it still does it: 1. Clear your browser cache. 2. Use PING to compare the IP addresses the various different domain names are resolving too. 3. If you find a discrepency in step 1, use NSLOOKUP to chase the DNS resolution chain back to where the problem is, and clear the DNS resolver cache of the offending system. 4. Try using TELNET to make a manual TCP connection on port 80, and see if you can get through that way. For step 4, if you're not familiar with the procedure, read http://usertools.plus.net/tutorials/id/21, section entitled Checking a web server. -- Ben ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: Public Folder Permissions
Thanks Nikki - They need to create sub-folders because based upon what types of email comes in it then has to be moved. I must need to figure out how to prevent them from deleting the top folder. Joseph Danielsen, CSBS, MCSA-2003, MCSA-2000 (Messaging), MCP Network Blade Inc. 49 Marcy Street Somerset, NJ 08873 732-213-0600 From: Nikki Peterson - OETX [mailto:[EMAIL PROTECTED] Posted At: Thursday, June 05, 2008 1:32 PM Posted To: Exchange Conversation: Public Folder Permissions Subject: RE: Public Folder Permissions If the client is able to Publish or Create a public folder, then they will be owner of that public folder (PF). If they own the PF then they can delete the PF. Why do they need to be able to Create sub-folders? I would ask them their plan, create the structure, give them EDITOR (NO PUBLISHING). Nikki From: ExchList [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2008 7:27 AM To: MS-Exchange Admin Issues Subject: Public Folder Permissions My question involves trying to prevent the problem I ran into yester. I created a Mail Enabled Public Folder. User need to perform the following: 1. Create sub-folders. 2. Delete/Move email messages I want to prevent them from Deleting any folders (especially the top Mail Enabled folder). Suggestions anyone? Joseph Danielsen, CSBS, MCSA-2003, MCSA-2000 (Messaging), MCP Network Blade Inc. 49 Marcy Street Somerset, NJ 08873 732-213-0600 www.networkblade.com http://www.networkblade.com/ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: Hosting Multiple domains in Exchange 2003
This is much more than rumor. In addition to regex style filters that look for generic/dynamic looking PTRs, more and more sites are also blocking if the PTR does not match the A. The later is nothing new -- it's called a double reverse lookup. That's been around since at least the mid 1990's. [...] (Still of questionable effectiveness -- spammers buy domain names, too -- but at least it's doing *something*.) I didn't claim it in its self was new. What is relatively new is that it's becoming more widespread to outright block because of it. Even just 2-3 years ago it was pretty much only the so called lunatic fringe of spam fighters that would 5xx if they didn't match. Botnet spam is the primary target of this type of filtering because virtually none of these machines are in IP space where the crooks can control the PTR (hence PTR doesn't match A). On SPAM-L people consistently post that just this method alone blocks anywhere from 40-80% of their entire spam load so I wouldn't say that it's of limited effectiveness. This is not hard for me to believe since the majority of spam still seems to come via bot-nets. I don't have hard stats here, but I can say that all the machines that actually get to our content filters are This method, of course, does nothing to stem the tide of spam relayed from Google, Yahoo, and the other webmail providers (a now rapidly growing category now that captchas are being broken and peoples accounts are being phished). The main problem seems to be the false positives (which has a variety of definitions depending on your outlook) such as the case here with the OP. Indeed, just checking for the existence of a PTR record is pretty useless, since anyone can put anything they want for IP address space they control. I agree the PTR existence check is limited now that more generic style ptr records are in place. Once upon a time it was more prevalent for dynamic nodes to have no PTR at all. AOL is a prime example of a site which does this existence only checking and rejecting. At the time, when Carl Hutzler was at the helm, it was an effective method for them (this was 3-4 years ago IIRC) and it does have a relatively low filtering cost and minimal chance of false positive. I would be interested to hear from the current AOL postmaster team on its effectiveness in current times. Pattern matching in an attempt to identify domain names which look funny is something I haven't encountered myself, which is why I qualified it that way. It is not quite as widespread due to a variety of reasons (regex complexity being right up there I'm sure) but here's a page that describes it in some detail along with some interesting stats. http://www.mostlygeek.com/2007/02/09/most-effective-header-filtering-rule s/ People do claim it's fairly effective, though I for one, am leery to implement it myself particularly since our filtering is good enough as it is. Plus, regex starts to hit the CPU more... Fixing this is not as big of a problem as it was a couple years back if you have a business level account. Unfortunately, one still encounters problems when there are multiple layers between the person finding the problem and the person who can fix it. I feel your pain. It still amazes me that sometimes the largest organizations (which typically have the largest budget for experienced I.T. personnel and equipment) are often the worst at managing their network. Sites like ***.com (a major/international GPS/GIS vendor) are doing C/R in an implementation that features egregious backscattering potential, another software vendor had dns that was completely hosed by a consultant. With some patience and handholding, they were able to fix things. I'm off to TechEd next week and will definitely be saying ehelo to the Exchange folks. :) Anyone else going? ~JasonG -- ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
Re: BES newbie question
Appears it was a MAPI issue...deleted the reg key, recreated the mapi account and all was well. The BES works well...much better than syncing the device with the cable...I'm just about converted... On Fri, Jun 6, 2008 at 9:57 AM, Steve Ens [EMAIL PROTECTED] wrote: Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it. ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
RE: BES newbie question
OH definitely better You can actually manage your mailbox, calendar, address book etc. wirelessly remotely live from your BB - dynamite! From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 2:32 PM To: MS-Exchange Admin Issues Subject: Re: BES newbie question Appears it was a MAPI issue...deleted the reg key, recreated the mapi account and all was well. The BES works well...much better than syncing the device with the cable...I'm just about converted... On Fri, Jun 6, 2008 at 9:57 AM, Steve Ens [EMAIL PROTECTED] wrote: Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~
Re: BES newbie question
Welcome to the Matrix! From: Don Andrews To: MS-Exchange Admin Issues Sent: Fri Jun 06 18:23:32 2008 Subject: RE: BES newbie question OH definitely better You can actually manage your mailbox, calendar, address book etc. wirelessly remotely live from your BB – dynamite! From: Steve Ens [mailto:[EMAIL PROTECTED] Sent: Friday, June 06, 2008 2:32 PM To: MS-Exchange Admin Issues Subject: Re: BES newbie question Appears it was a MAPI issue...deleted the reg key, recreated the mapi account and all was well. The BES works well...much better than syncing the device with the cable...I'm just about converted... On Fri, Jun 6, 2008 at 9:57 AM, Steve Ens [EMAIL PROTECTED]mailto:[EMAIL PROTECTED] wrote: Just setting up BES for the first time...trying to get a device online, but it times out when I try to activate it. Do I need to service pack the ESM on the BES? I will try that at any rate... Other than that, once I hit the activate button on the device, a message appears in my inbox (I'm testing my account first), and when it times out another one appears...other than that, I can send mail from it ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~