Public Folders Not replicating

We have a single email server (exchange 2003 sp2) which I am trying to replace by using a swing migration. I have added the new server into the same organisation and I can send email – both internally and externally. The problem is that public folders are not replicating correctly. I have enable

RE: NDR setting to send only bounce message without the original message

Nice to know, thanks for following up. This is one of those things, along with "publish an SPF record" that could stand to be repeated on a regular basis. Carl From: David Lum [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 6:02 PM To: MS-Exchange Admin Issues Subject: RE: NDR s

Re: NDR's generated via spoofed from address

Yes, and some third-party DNS providers don't support them either. We have ours hosted third-party because of a requirement from our web hosting provider, but that's since changed, and with our new circuit we'll definitely moving towards a real DNS arrangment - we'll be hosting our own, with our ne

RE: Email Certificates

Didn't mean to imply off-site - both the SMIME proxy and Secure Messenger solutions are internally hosted - in fact on the same set of servers. Thanks for the input. the off-site solution seems to be very popular. On Wed, Apr 23, 2008 at 3:23 PM, Don Andrews

RE: NDR setting to send only bounce message without the original message

Carl, Thanks for this post, this made me go into my mail settings and make sure I had this set. A bit of searching on help tips there led me to this: http://www.msexchange.org/tutorials/Sender-Recipient-Filtering.html which helped my lock down the sending filters further. NDR spam has been

Remote Domains and line wrap

I am trying to setup a remote domain and specify its line wrap in Exchange 2007sp1, I have created the remote domain as *.domain.com and when mail through owa is sent with as text to [EMAIL PROTECTED] the line wrap is ignored. Is there something I am missing? Thanks!

Re: Email Certificates

Thanks for the input. the off-site solution seems to be very popular. On Wed, Apr 23, 2008 at 3:23 PM, Don Andrews <[EMAIL PROTECTED]> wrote: > Yep – SMIME is a client to client protocol – each client will need their > own certificate, then will need to do a certificate exchange etc. etc. – and

RE: NDR's generated via spoofed from address

Wow, just goes to show how foreign such an open environment is to me - at least when it comes to email. Still, seems an SPF record covering all those IP ranges would be better than none at all. From: Salvador Manzo [mailto:[EMAIL PROTECTED] Sent: Wednesday, A

RE: NDR's generated via spoofed from address

Yep, your workaround makes it simple for you - for the state owned ones, I'd think (he said innocently) that if the state spam filter isn't successfully blocking NDR's resulting from spoofed messages, that your request for them to implement SPF records for all state owned domains would be completel

RE: Email Certificates

Yep - SMIME is a client to client protocol - each client will need their own certificate, then will need to do a certificate exchange etc. etc. - and bottom line is the sending client is required to ensure that they send encrypted after all that. Some of us have gateways that act as SMIME proxi

Re: NDR's generated via spoofed from address

Public IPs across the board No automated vetting that I¹m aware of for SMTP hosts sending outbound, UNLESS they match spambot profiles All inbound ³filtered², so as far as my Exchange server is considered, everything originates at our border ³tagging filter² On 4/23/08 1:02 PM, "Don Andrews" <[EMA

RE: NDR's generated via spoofed from address

The way domain names work, at least for public schools in Ohio is they all get a domain name from the State. K12.oh.us is the root, so we are elyriaschools.k12.oh.us We of course do not own the name, the state does. So we have no control over the dns records, or the SPF records and there are

RE: NDR's generated via spoofed from address

This may sound like (and be) a stupid question, but why is it such a problem? Do you just allow ANY IP to send SMTP traffic to the internet or something? Seems like even that would be possible to cover with SPF. (Note, this is merely advertising which IPs are allowed to send as your domain, not n

RE: Email Certificates

Uh-oh that throws a wrench in the bucket, if we cant actually communicate with the admin of the email server on their end (cox) we may be in trouble. If they are using the standard cox server at mx.west.cox.net (or mx.east.cox.net) then transport encryption may not be possible ( a quick telnet

RE: NDR's generated via spoofed from address

Well, he DID say clueless (in ref to using Symantec) ;) -Original Message- From: Micheal Espinola Jr [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 10:53 AM To: MS-Exchange Admin Issues Subject: Re: NDR's generated via spoofed from address That's not necessarily true. They co

RE: Confirmed issue with Exchange 2007 Post SP1 Rollup 1

I am seeing the same issue. If you get the hotfix id could you send it along? I can’t remove the rullup 1 at this point. Thanks From: Kretche, Peter [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 2:26 PM To: MS-Exchange Admin Issues Subject: Confirmed issue with Exchange 2007 Post S

Re: A couple of OWA 2007 questions...

Thanks Troy. So far all of the users I've heard from have been Entourage 2008, but I will have them check for more updates. I guess i have to fire my Entourage up and use it for a few days to see if I can reproduce itI hate Entourage. I'll update if I end up calling PSS. On Wed, Apr 23, 200

Re: Email Certificates

Any way to set that up from my E2K3 domain to their Outlook client? Their email is hosted by an ISP and is pop3. (@cox.net email address)?? On Wed, Apr 23, 2008 at 12:06 PM, Troy Meyer <[EMAIL PROTECTED]> wrote: > Jeff, if you mean simply making sure that the general internet cant see > the mes

Re: NDR's generated via spoofed from address

Re: NDR's generated via spoofed from addressok. thanks. - Original Message - From: Kennedy, Jim To: MS-Exchange Admin Issues Sent: Wednesday, April 23, 2008 2:39 PM Subject: RE: NDR's generated via spoofed from address When you say "all smtp/pop traffic is forwarded to one

RE: NDR's generated via spoofed from address

When you say "all smtp/pop traffic is forwarded to one IP on the firewall" do you mean all of your internal servers are forwarded to that one IP...or are your users using outside servers? SPF is tied to the sending servers IP address per domain. So you figure out what public IP addresses the ser

RE: NDR's generated via spoofed from address

Firewalling or blocking email from them because they don't check SPF might be a bit overkill initially, but combined with the backscatter info it might be good ammunition during a discussion with the backscatter source(s). From: Kennedy, Jim [mailto:[EMAIL PROT

Confirmed issue with Exchange 2007 Post SP1 Rollup 1

I’ve been working with MS PSS for the past few days on an issue with Exchange 2007 Post SP1 Rollup 1. So here’s what’s happening. HTML email messages coming in with Unicode character sets are appearing as garbled** in email clients. The issue was supposedly resolved in KB941851 via Post SP1 R

Re: NDR's generated via spoofed from address

Re: NDR's generated via spoofed from addressAll of my users are behind a firewall and all smtp/pop traffic is forwarded to one IP on the firewall. If I SPFed my ip from the Firewall would that kill me NDR's? Or maybe I should just sit back down in the corner with my propeller hat on and lick

RE: MS Exchange 2007 newbie question - Exmerge

And you must be at SP1 or you won't have this cmdlet available to you. -Bonnie From: Troy Meyer [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 10:42 AM To: MS-Exchange Admin Issues Subject: RE: MS Exchange 2007 newbie question - Exmerge Cesare' This is easiest from the management she

Re: NDR's generated via spoofed from address

Hmm? If SPF breaks because of various internal forwarding that you do - you can always impliment SRS to "fix" it. SPF should be something that anyone can impliment - some requiring SRS to compliment it. http://www.openspf.org/SRS On Wed, Apr 23, 2008 at 1:57 PM, Salvador Manzo <[EMAIL PROTECTE

RE: NDR's generated via spoofed from address

I hear ya, ours is probably similar. edu networks can be exciting. But even if you can narrow it down to a class B that is an improvement..casting a wide address space in your SPF would at least eliminate a great part of the rest of the internet.. From: Salvador Manzo [mailto:[EMAIL P

Re: NDR's generated via spoofed from address

Some of us have very weird network setups that make SPF records non-starters... (sigh) On 4/23/08 10:27 AM, "Kennedy, Jim" <[EMAIL PROTECTED]> wrote: > You certainly should publish an SPF, it can help and causes no harm as you > point out. But I would respectfully suggest that someone sending th

Re: NDR's generated via spoofed from address

That's not necessarily true. They could be using a antivirus product like Symantec - that rejects a message after receiving it (a no-no as far as also sending a notification back to the sender). That would have nothing to do whether or not they use SPF. On Wed, Apr 23, 2008 at 1:27 PM, Kennedy,

RE: MS Exchange 2007 newbie question - Exmerge

Cesare' This is easiest from the management shell: Get-mailbox -server | export-mailbox -pstfolderpath c:\path -confirm:$false -troy From: Cesare' A. Ramos [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 10:13 AM To: MS-Exchange Admin Issues Subject: MS Exchange 2007 newbie quest

RE: MS Exchange 2007 newbie question - Exmerge

Export-mailbox. Regards, Michael B. Smith MCSE/Exchange MVP http://TheEssentialExchange.com From: Cesare' A. Ramos [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 1:13 PM To: MS-Exchange Admin Issues Subject: MS Exchange 2007 newbie question - Exmerge Hello all. Hav

RE: NDR's generated via spoofed from address

You certainly should publish an SPF, it can help and causes no harm as you point out. But I would respectfully suggest that someone sending that much backscatter is already so clueless that they probably don't check SPF either. Firewall them. From: Don Andrews [mailto:[EMAIL PROTECTED] Sent: W

RE: NDR's generated via spoofed from address

Publishing an SPF record may help some depending on the domain(s) the NDR's are coming from. From: Clayton Doige [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 5:38 AM To: MS-Exchange Admin Issues Subject: NDR's generated via spoofed from address

MS Exchange 2007 newbie question - Exmerge

Hello all. Have a question, we are entertaining an issue that we have been presented with. We have the need to remove / eliminate a live MS Exchange 2007 server, as it is not needed anymore. For ease of use and data access, we want to export all mailboxes to PSTs. In past lives, we used Exm

RE: Email Certificates

Jeff, if you mean simply making sure that the general internet cant see the messages and you aren't worried about encryption once they reach the other companies servers, it should be simple; assuming the other company's MTA will accept TLS encryption, you can create a new routing group connector

Re: Email Certificates

Thank you very much. I will look at that information as time allows. We are running E2K3 and BES 4.1. Main concern at the moment is that we find a way to send email from BB's to vendors OUTSIDE our network in a secure way that is readable by them. On Wed, Apr 23, 2008 at 11:30 AM, Troy Meyer <

RE: Email Certificates

Hi Jeff, You really need to understand PKI with regards to how it works before you can really implement encryption. I assume you are running some flavor of exchange and are looking to encrypt messages, have you looked at this: http://technet.microsoft.com/en-us/library/bb123466(EXCHG.65).aspx

RE: Email Certificates

What version of Exchange are you running? From: Jeff Brown [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 5:40 AM To: MS-Exchange Admin Issues Subject: Email Certificates I need help correcting filling in/correcting holes in my understanding of email certificates and how they work. I

RE: A couple of OWA 2007 questions...

Alex, I am unsure about the subject line issue, but I know our few Entourage users had authentication issues (among others) before they updated their Entourage client software. One of the nasty things about Entourage is that all updates don't show at once, you need to keep going back to the Mi

Re: NDR's generated via spoofed from address

PS: I added acronyms like MTA and MUA to what I wrote because depending on what/where you are searching for this kind of information, that's how mail servers and clients will be referred to in certain mail administration circles. On Wed, Apr 23, 2008 at 10:47 AM, Micheal Espinola Jr <[EMAIL PROT

Re: NDR's generated via spoofed from address

This is commonly called "backscatter". For looking for ideas and resources for dealing with this issue, that's the best term/phrase to look for. Because its currently impossible to prevent people from forging email, the only way to prevent non-delivery reports(NDRs) based on forged email is to im

Re: NDR's generated via spoofed from address

7 AM To: MS-Exchange Admin Issues Subject: Re: NDR's generated via spoofed from address __ Information from ESET Smart Security, version of virus signature database 3048 (20080423) __ The message was checked by ESET Smart Security. http://www.eset.com

RE: NDR's generated via spoofed from address

Deep joy, thanks for the advice J this blog was amusing to say the least: http://www.kryogenix.org/days/2007/12/19/drowning-in-the-backscatter From: Peter Johnson [mailto:[EMAIL PROTECTED] Sent: 23 April 2008 14:05 To: MS-Exchange Admin Issues Subject: RE: NDR's generated via spoofed from a

RE: NDR's generated via spoofed from address

Absolutely. Unfortunately you have no way of dealing with this other than setting up an Outlook rule or killing NDR's at your edge mail server if you have such a thing. From: Sherry Abercrombie [mailto:[EMAIL PROTECTED] Sent: 23 April 2008 14:57 To: MS-Exchange Admin Issues Subject: Re: NDR's

RE: NDR's generated via spoofed from address

__ Information from ESET Smart Security, version of virus signature database 3048 (20080423) __ The message was checked by ESET Smart Security. http://www.eset.com ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja~

RE: Automatic email forwarding

Do you send any emails to this domain other than these requests for information packets? From: Greg Mulholland [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 22, 2008 9:31 PM To: MS-Exchange Admin Issues Subject: Automatic email forwarding We have a situat

RE: NDR's generated via spoofed from address

Google "backscatter" and check out ME2's wiki. Shook http://www.linkedin.com/in/andyshook From: Sherry Abercrombie [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 23, 2008 8:57 AM To: MS-Exchange Admin Issues Subject: Re: NDR's generated via spoofed fr

Re: NDR's generated via spoofed from address

Tell her that Outlook rules are her friend. On Wed, Apr 23, 2008 at 7:38 AM, Clayton Doige <[EMAIL PROTECTED]> wrote: > Hi all, have a user who is getting nailed with NDR's for email she is not > sending. We have verified that there are no matching emails coming out of > the E2k3 SP2 server whic

Email Certificates

I need help correcting filling in/correcting holes in my understanding of email certificates and how they work. I purchase a well known cert for my domain so that I can send encrypted email over the public domain. Because I laid out the money for this well known cert, I don't have to exchange cer

NDR's generated via spoofed from address

Hi all, have a user who is getting nailed with NDR's for email she is not sending. We have verified that there are no matching emails coming out of the E2k3 SP2 server which means that someone 'out there' is spoofing the from address and NDR's are going to that address. What's the best bet to c

A couple of OWA 2007 questions...

Before I call PSS for an official response I'm hoping someone here may know... 1. In OWA light, is there a way to disable the truncation that happens on the subject line or increase the number of characters? It appears to truncate at 32 characters and it's pretty annoying for non-Windows users wh