What Exchange permissions are given to each receive connector? (Bypass SPAM, etc)What are the differences...
Avoiding morning and evening handshakes
How can animals be objects of ethics without being subjects as well?
Citing paywalled articles accessed via illegal web sharing
How to solve a large system of linear algebra?
Are there any modern advantages of a fire piston?
Does paint affect EMI ability of enclosure?
Why is working on the same position for more than 15 years not a red flag?
Can making a creature unable to attack after it has been assigned as an attacker remove it from combat?
Word or phrase for showing great skill at something WITHOUT formal training in it
Can we use the stored gravitational potential energy of a building to produce power?
Who is this Ant Woman character in this image alongside the Wasp?
How to count the characters of jar files by wc
Can I become debt free or should I file bankruptcy ? How to manage my debt and finances?
Writing a character who is going through a civilizing process without overdoing it?
Eww, those bytes are gross
How to say "Brexit" in Latin?
what does しにみえてる mean?
Early credit roll before the end of the film
Why exactly do action photographers need high fps burst cameras?
Why do no American passenger airlines still operate dedicated cargo flights?
Could a phylactery of a lich be a mirror or does it have to be a box?
How can I get my players to come to the game session after agreeing to a date?
Porting Linux to another platform requirements
Is a debit card dangerous in my situation?
What Exchange permissions are given to each receive connector? (Bypass SPAM, etc)
What are the differences between accessing Exchange email from your iPhone via IMAP vs ActiveSync (besides push notifications)?How can someone send an email from my own account?Why the email i send are detected as spam from Google, Yahoo, MSN etc?Are emails marked as junk in Outlook passed to the Exchange server to improve its spam filter?Show either the “Return-Path”, “X-Sender” or “X-Envelope-From” in Thunderbird's list viewWhat diagnosis steps can I do if my emails send, but are not received, not even as spam?User email messages are delayed within Office 365 environmentMS Exchange breaks DKIM during mail redirectGetting “Delivery has failed to these recipients or groups” on every received emailWhat are the best practices of using a mailbox on multiple Outlook clients with Exchange Online
Exchange has a list of permissions that are assigned to each connector based on the checkbox selection below.
Here are an example of some SMTP headers that are used internally (in routing) to configure how exchange behaves:
ms-Exch-SMTP-Accept-Authoritative-Domain
ms-Exch-Bypass-Anti-Spam
ms-Exch-Bypass-Message-Size-Limit
ms-Exch-SMTP-Accept-Exch50
ms-Exch-Accept-Headers-Routing
ms-Exch-SMTP-Submit
ms-Exch-SMTP-Accept-Any-Recipient
ms-Exch-SMTP-Accept-Authentication-Flag
ms-Exch-SMTP-Accept-Any-Sender
These headers are not visible in Outlook, but live in Exchange as a message is sent
Question
What are the meanings/rights of these headers?
What headers aren't listed?
What permissions are assigned to each checkbox?
email smtp exchange
asked Feb 26 '15 at 13:39
random65537random65537
97831528
bumped to the homepage by Community♦ 11 mins ago
This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
migrated from security.stackexchange.com Feb 26 '15 at 22:41
This question came from our site for information security professionals.
add a comment |
Exchange has a list of permissions that are assigned to each connector based on the checkbox selection below.
Here are an example of some SMTP headers that are used internally (in routing) to configure how exchange behaves:
ms-Exch-SMTP-Accept-Authoritative-Domain
ms-Exch-Bypass-Anti-Spam
ms-Exch-Bypass-Message-Size-Limit
ms-Exch-SMTP-Accept-Exch50
ms-Exch-Accept-Headers-Routing
ms-Exch-SMTP-Submit
ms-Exch-SMTP-Accept-Any-Recipient
ms-Exch-SMTP-Accept-Authentication-Flag
ms-Exch-SMTP-Accept-Any-Sender
These headers are not visible in Outlook, but live in Exchange as a message is sent
Question
What are the meanings/rights of these headers?
What headers aren't listed?
What permissions are assigned to each checkbox?
email smtp exchange
asked Feb 26 '15 at 13:39
random65537random65537
97831528
bumped to the homepage by Community♦ 11 mins ago
This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
migrated from security.stackexchange.com Feb 26 '15 at 22:41
This question came from our site for information security professionals.
add a comment |
Exchange has a list of permissions that are assigned to each connector based on the checkbox selection below.
Here are an example of some SMTP headers that are used internally (in routing) to configure how exchange behaves:
ms-Exch-SMTP-Accept-Authoritative-Domain
ms-Exch-Bypass-Anti-Spam
ms-Exch-Bypass-Message-Size-Limit
ms-Exch-SMTP-Accept-Exch50
ms-Exch-Accept-Headers-Routing
ms-Exch-SMTP-Submit
ms-Exch-SMTP-Accept-Any-Recipient
ms-Exch-SMTP-Accept-Authentication-Flag
ms-Exch-SMTP-Accept-Any-Sender
These headers are not visible in Outlook, but live in Exchange as a message is sent
Question
What are the meanings/rights of these headers?
What headers aren't listed?
What permissions are assigned to each checkbox?
email smtp exchange
asked Feb 26 '15 at 13:39
random65537random65537
97831528
Exchange has a list of permissions that are assigned to each connector based on the checkbox selection below.
Here are an example of some SMTP headers that are used internally (in routing) to configure how exchange behaves:
ms-Exch-SMTP-Accept-Authoritative-Domain
ms-Exch-Bypass-Anti-Spam
ms-Exch-Bypass-Message-Size-Limit
ms-Exch-SMTP-Accept-Exch50
ms-Exch-Accept-Headers-Routing
ms-Exch-SMTP-Submit
ms-Exch-SMTP-Accept-Any-Recipient
ms-Exch-SMTP-Accept-Authentication-Flag
ms-Exch-SMTP-Accept-Any-Sender
These headers are not visible in Outlook, but live in Exchange as a message is sent
Question
What are the meanings/rights of these headers?
What headers aren't listed?
What permissions are assigned to each checkbox?
email smtp exchange
email smtp exchange
asked Feb 26 '15 at 13:39
random65537random65537
97831528
asked Feb 26 '15 at 13:39
random65537random65537
97831528
asked Feb 26 '15 at 13:39
random65537random65537
97831528
asked Feb 26 '15 at 13:39
random65537random65537
97831528
asked Feb 26 '15 at 13:39
random65537random65537
97831528
97831528
bumped to the homepage by Community♦ 11 mins ago
This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
bumped to the homepage by Community♦ 11 mins ago
This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
migrated from security.stackexchange.com Feb 26 '15 at 22:41
This question came from our site for information security professionals.
migrated from security.stackexchange.com Feb 26 '15 at 22:41
This question came from our site for information security professionals.
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.
The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.
That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.
Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights
Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights
Documentation on Authentication
Externally Secureddoes not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates isX-MS-Exchange-Organization-AuthAs: Internal
Documentation on SMTP headers
ms-Exch-Bypass-Anti-Spamextended right circumvents the Exchange Anti-Spam checks, not Outlook’s.
answered Feb 26 '15 at 13:39
random65537random65537
97831528
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f883126%2fwhat-exchange-permissions-are-given-to-each-receive-connector-bypass-spam-etc%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.
The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.
That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.
Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights
Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights
Documentation on Authentication
Externally Secureddoes not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates isX-MS-Exchange-Organization-AuthAs: Internal
Documentation on SMTP headers
ms-Exch-Bypass-Anti-Spamextended right circumvents the Exchange Anti-Spam checks, not Outlook’s.
answered Feb 26 '15 at 13:39
random65537random65537
97831528
add a comment |
A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.
The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.
That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.
Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights
Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights
Documentation on Authentication
Externally Secureddoes not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates isX-MS-Exchange-Organization-AuthAs: Internal
Documentation on SMTP headers
ms-Exch-Bypass-Anti-Spamextended right circumvents the Exchange Anti-Spam checks, not Outlook’s.
answered Feb 26 '15 at 13:39
random65537random65537
97831528
add a comment |
A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.
The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.
That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.
Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights
Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights
Documentation on Authentication
Externally Secureddoes not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates isX-MS-Exchange-Organization-AuthAs: Internal
Documentation on SMTP headers
ms-Exch-Bypass-Anti-Spamextended right circumvents the Exchange Anti-Spam checks, not Outlook’s.
answered Feb 26 '15 at 13:39
random65537random65537
97831528
A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.
The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.
That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.
Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights
Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights
Documentation on Authentication
Externally Secureddoes not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates isX-MS-Exchange-Organization-AuthAs: Internal
Documentation on SMTP headers
ms-Exch-Bypass-Anti-Spamextended right circumvents the Exchange Anti-Spam checks, not Outlook’s.
answered Feb 26 '15 at 13:39
random65537random65537
97831528
answered Feb 26 '15 at 13:39
random65537random65537
97831528
answered Feb 26 '15 at 13:39
random65537random65537
97831528
answered Feb 26 '15 at 13:39
random65537random65537
97831528
97831528
add a comment |
add a comment |
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f883126%2fwhat-exchange-permissions-are-given-to-each-receive-connector-bypass-spam-etc%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
