Secure traffic between SMTP servers in Windows 2000

You can use Windows 2000's SMTP service to route incoming mail to a smart host running Exchange Server or another mail server application. One of the ways you can prevent relay through the internal SMTP server is to require authentication between the external server running the SMTP service and the internal server. Find out how in this Windows 2000 Server tip.

Windows 2000 Server’s SMTP service won’t turn your server
into a full-blown mail server, but it can be useful for relaying mail to other
servers. For example, you can use the SMTP service to route incoming mail to a
smart host running Exchange Server or another mail server application.

One of the ways you can prevent relay through the internal
SMTP server is to require authentication between the external server running
the SMTP service and the internal server. By requiring authentication at the
internal server, you help eliminate the possibility that unauthorized
users—including those inside your organization—will use the internal server for
relaying or spamming.

To secure a connection between servers, start by configuring
the SMTP service on the external server to use the appropriate authentication
method for outgoing connections. Follow these steps:

Open
the IIS console, and connect to the external server.
Select
the SMTP virtual server, and click the Properties button on the toolbar.
On the
Delivery tab, click Outbound Security, and choose Windows Security
Package.
Enter
the username and password from the internal server that the system will
use to authenticate the connection, and click OK.
Click
Advanced, and enter the fully qualified domain name (FQDN) of the internal
server in the Smart Host field. If you specify an IP address instead of an
FQDN, enclose the address in square brackets, such as [192.168.0.4].
Deselect
the Attempt Direct Delivery Before Sending To Smart Host option, click OK,
and click OK to close the server’s properties.
Configure
the internal server to require authentication, and configure it for
Windows authentication.

Configuring the connection in this way doesn’t secure the
e-mail system by itself; it simply secures the connection to the internal
server and helps prevent unauthorized access to the internal server. You should
still take steps to secure the external server to prevent unauthorized relay.

Miss a tip?

Check out the Windows 2000 Server Archive,
and catch up on the most recent tips from this newsletter.

Want more Win2K tips
and tricks? Automatically
sign up for our free Windows 2000 Server newsletter, delivered each
Tuesday!

TechRepublic Premium editorial calendar: IT policies, checklists, toolkits and research for download

TechRepublic Premium content helps you solve your toughest IT issues and jump-start your career or next project.

Payroll

The Best Human Resources Payroll Software of 2023

With a lot of choices in the market, we have highlighted the top six HR and payroll software options for 2023.

A computer running Windows 11. — Image: Microsoft.

Software

Windows 11 update brings Bing Chat into the taskbar

Microsoft's latest Windows 11 allows enterprises to control some of these new features, which also include Notepad, iPhone and Android news.

A software engineer works from home. — Image: tanatat/Adobe Stock

CXO

Tech jobs: No rush back to the office for software developers as salaries reach $180,000

Salaries for remote roles in software development were higher than location-bound jobs in 2022, Hired finds.

Project management process to manage and develop with resources to deliver quality product, agile development cycle, businessman project manager balance on clock juggling project management elements. — Image: Nuthawut/Adobe Stock

Software

The 10 best agile project management software for 2023

With so many agile project management software tools available, it can be overwhelming to find the best fit for you. We've compiled a list of 10 tools you can use to take advantage of agile within your organization.

A user typing a password. — Image: Song_about_summer/Adobe Stock

Security

1Password is looking to a password-free future. Here’s why

With phishing-based credentials theft on the rise, 1Password CPO Steve Won explains why the endgame is to 'eliminate’ passwords entirely.

PURPOSE Recruiting an automation specialist with the right combination of technical expertise and experience will require a comprehensive screening process. This Hiring Kit from TechRepublic Premium provides a flexible framework your business can use to find, recruit and ultimately hire the right person for the job. From the hiring kit: DETERMINING FACTORS, DESIRABLE PERSONALITY TRAITS ...

PURPOSE Recruiting a cybersecurity engineer with the right combination of technical and industry experience will require a comprehensive screening process. This hiring kit from TechRepublic Premium provides a flexible framework your business can use to find, recruit and ultimately hire the right person for the job. From the hiring kit: DETERMINING FACTORS, DESIRABLE PERSONALITY TRAITS ...

Secure traffic between SMTP servers in Windows 2000