What Exchange permissions are given to each receive connector? (Bypass SPAM, etc)What are the differences...

Avoiding morning and evening handshakes

How can animals be objects of ethics without being subjects as well?

Citing paywalled articles accessed via illegal web sharing

How to solve a large system of linear algebra?

Are there any modern advantages of a fire piston?

Does paint affect EMI ability of enclosure?

Why is working on the same position for more than 15 years not a red flag?

Can making a creature unable to attack after it has been assigned as an attacker remove it from combat?

Word or phrase for showing great skill at something WITHOUT formal training in it

Can we use the stored gravitational potential energy of a building to produce power?

Who is this Ant Woman character in this image alongside the Wasp?

How to count the characters of jar files by wc

Can I become debt free or should I file bankruptcy ? How to manage my debt and finances?

Writing a character who is going through a civilizing process without overdoing it?

Eww, those bytes are gross

How to say "Brexit" in Latin?

what does しにみえてる mean?

Early credit roll before the end of the film

Why exactly do action photographers need high fps burst cameras?

Why do no American passenger airlines still operate dedicated cargo flights?

Could a phylactery of a lich be a mirror or does it have to be a box?

How can I get my players to come to the game session after agreeing to a date?

Porting Linux to another platform requirements

Is a debit card dangerous in my situation?



What Exchange permissions are given to each receive connector? (Bypass SPAM, etc)


What are the differences between accessing Exchange email from your iPhone via IMAP vs ActiveSync (besides push notifications)?How can someone send an email from my own account?Why the email i send are detected as spam from Google, Yahoo, MSN etc?Are emails marked as junk in Outlook passed to the Exchange server to improve its spam filter?Show either the “Return-Path”, “X-Sender” or “X-Envelope-From” in Thunderbird's list viewWhat diagnosis steps can I do if my emails send, but are not received, not even as spam?User email messages are delayed within Office 365 environmentMS Exchange breaks DKIM during mail redirectGetting “Delivery has failed to these recipients or groups” on every received emailWhat are the best practices of using a mailbox on multiple Outlook clients with Exchange Online













0















Exchange has a list of permissions that are assigned to each connector based on the checkbox selection below.



enter image description here



Here are an example of some SMTP headers that are used internally (in routing) to configure how exchange behaves:



ms-Exch-SMTP-Accept-Authoritative-Domain
ms-Exch-Bypass-Anti-Spam
ms-Exch-Bypass-Message-Size-Limit
ms-Exch-SMTP-Accept-Exch50
ms-Exch-Accept-Headers-Routing
ms-Exch-SMTP-Submit
ms-Exch-SMTP-Accept-Any-Recipient
ms-Exch-SMTP-Accept-Authentication-Flag
ms-Exch-SMTP-Accept-Any-Sender


These headers are not visible in Outlook, but live in Exchange as a message is sent



enter image description here



Question




  • What are the meanings/rights of these headers?


  • What headers aren't listed?


  • What permissions are assigned to each checkbox?











share|improve this question














bumped to the homepage by Community 11 mins ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.






migrated from security.stackexchange.com Feb 26 '15 at 22:41


This question came from our site for information security professionals.























    0















    Exchange has a list of permissions that are assigned to each connector based on the checkbox selection below.



    enter image description here



    Here are an example of some SMTP headers that are used internally (in routing) to configure how exchange behaves:



    ms-Exch-SMTP-Accept-Authoritative-Domain
    ms-Exch-Bypass-Anti-Spam
    ms-Exch-Bypass-Message-Size-Limit
    ms-Exch-SMTP-Accept-Exch50
    ms-Exch-Accept-Headers-Routing
    ms-Exch-SMTP-Submit
    ms-Exch-SMTP-Accept-Any-Recipient
    ms-Exch-SMTP-Accept-Authentication-Flag
    ms-Exch-SMTP-Accept-Any-Sender


    These headers are not visible in Outlook, but live in Exchange as a message is sent



    enter image description here



    Question




    • What are the meanings/rights of these headers?


    • What headers aren't listed?


    • What permissions are assigned to each checkbox?











    share|improve this question














    bumped to the homepage by Community 11 mins ago


    This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.






    migrated from security.stackexchange.com Feb 26 '15 at 22:41


    This question came from our site for information security professionals.





















      0












      0








      0








      Exchange has a list of permissions that are assigned to each connector based on the checkbox selection below.



      enter image description here



      Here are an example of some SMTP headers that are used internally (in routing) to configure how exchange behaves:



      ms-Exch-SMTP-Accept-Authoritative-Domain
      ms-Exch-Bypass-Anti-Spam
      ms-Exch-Bypass-Message-Size-Limit
      ms-Exch-SMTP-Accept-Exch50
      ms-Exch-Accept-Headers-Routing
      ms-Exch-SMTP-Submit
      ms-Exch-SMTP-Accept-Any-Recipient
      ms-Exch-SMTP-Accept-Authentication-Flag
      ms-Exch-SMTP-Accept-Any-Sender


      These headers are not visible in Outlook, but live in Exchange as a message is sent



      enter image description here



      Question




      • What are the meanings/rights of these headers?


      • What headers aren't listed?


      • What permissions are assigned to each checkbox?











      share|improve this question














      Exchange has a list of permissions that are assigned to each connector based on the checkbox selection below.



      enter image description here



      Here are an example of some SMTP headers that are used internally (in routing) to configure how exchange behaves:



      ms-Exch-SMTP-Accept-Authoritative-Domain
      ms-Exch-Bypass-Anti-Spam
      ms-Exch-Bypass-Message-Size-Limit
      ms-Exch-SMTP-Accept-Exch50
      ms-Exch-Accept-Headers-Routing
      ms-Exch-SMTP-Submit
      ms-Exch-SMTP-Accept-Any-Recipient
      ms-Exch-SMTP-Accept-Authentication-Flag
      ms-Exch-SMTP-Accept-Any-Sender


      These headers are not visible in Outlook, but live in Exchange as a message is sent



      enter image description here



      Question




      • What are the meanings/rights of these headers?


      • What headers aren't listed?


      • What permissions are assigned to each checkbox?








      email smtp exchange






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked Feb 26 '15 at 13:39









      random65537random65537

      97831528




      97831528





      bumped to the homepage by Community 11 mins ago


      This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.







      bumped to the homepage by Community 11 mins ago


      This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.






      migrated from security.stackexchange.com Feb 26 '15 at 22:41


      This question came from our site for information security professionals.









      migrated from security.stackexchange.com Feb 26 '15 at 22:41


      This question came from our site for information security professionals.
























          1 Answer
          1






          active

          oldest

          votes


















          0














          A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.



          The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.



          That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.



          Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights

          Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights


          Documentation on Authentication





          • Externally Secured does not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates is X-MS-Exchange-Organization-AuthAs: Internal


          Documentation on SMTP headers





          • ms-Exch-Bypass-Anti-Spam extended right circumvents the Exchange Anti-Spam checks, not Outlook’s.






          share|improve this answer























            Your Answer








            StackExchange.ready(function() {
            var channelOptions = {
            tags: "".split(" "),
            id: "3"
            };
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function() {
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled) {
            StackExchange.using("snippets", function() {
            createEditor();
            });
            }
            else {
            createEditor();
            }
            });

            function createEditor() {
            StackExchange.prepareEditor({
            heartbeatType: 'answer',
            autoActivateHeartbeat: false,
            convertImagesToLinks: true,
            noModals: true,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: 10,
            bindNavPrevention: true,
            postfix: "",
            imageUploader: {
            brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
            contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
            allowUrls: true
            },
            onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            });


            }
            });














            draft saved

            draft discarded


















            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f883126%2fwhat-exchange-permissions-are-given-to-each-receive-connector-bypass-spam-etc%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown

























            1 Answer
            1






            active

            oldest

            votes








            1 Answer
            1






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes









            0














            A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.



            The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.



            That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.



            Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights

            Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights


            Documentation on Authentication





            • Externally Secured does not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates is X-MS-Exchange-Organization-AuthAs: Internal


            Documentation on SMTP headers





            • ms-Exch-Bypass-Anti-Spam extended right circumvents the Exchange Anti-Spam checks, not Outlook’s.






            share|improve this answer




























              0














              A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.



              The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.



              That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.



              Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights

              Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights


              Documentation on Authentication





              • Externally Secured does not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates is X-MS-Exchange-Organization-AuthAs: Internal


              Documentation on SMTP headers





              • ms-Exch-Bypass-Anti-Spam extended right circumvents the Exchange Anti-Spam checks, not Outlook’s.






              share|improve this answer


























                0












                0








                0







                A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.



                The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.



                That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.



                Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights

                Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights


                Documentation on Authentication





                • Externally Secured does not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates is X-MS-Exchange-Organization-AuthAs: Internal


                Documentation on SMTP headers





                • ms-Exch-Bypass-Anti-Spam extended right circumvents the Exchange Anti-Spam checks, not Outlook’s.






                share|improve this answer













                A partial answer is available here, where it describes an Exchange security feature called the Header Firewall.



                The header firewall removes sensitive x-headers from messages and prevents abuse. The article describes how they are configured, but stops short of listing all the headers, the meanings of the rights, or the relationship to the checkboxes.



                That being said, I'll run the following command later to enumerate the various settings for send and receive connectors.



                Get-SendConnector –Identity {name of Send connector} | Get-ADPermission | where {$_.ExtendedRights –like “*routing*”} | fl user, extendedrights

                Get-ReceiveConnector –Identity {name of default Receive connector} | Get-ADPermission | where {$_.extendedrights – like “*routing*”} | fl user,extendedrights


                Documentation on Authentication





                • Externally Secured does not stamp any SCL X-headers on the message as an SCL of -1 would’ve bypassed Outlook’s checks. The only header this authentication type creates is X-MS-Exchange-Organization-AuthAs: Internal


                Documentation on SMTP headers





                • ms-Exch-Bypass-Anti-Spam extended right circumvents the Exchange Anti-Spam checks, not Outlook’s.







                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered Feb 26 '15 at 13:39









                random65537random65537

                97831528




                97831528






























                    draft saved

                    draft discarded




















































                    Thanks for contributing an answer to Super User!


                    • Please be sure to answer the question. Provide details and share your research!

                    But avoid



                    • Asking for help, clarification, or responding to other answers.

                    • Making statements based on opinion; back them up with references or personal experience.


                    To learn more, see our tips on writing great answers.




                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function () {
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f883126%2fwhat-exchange-permissions-are-given-to-each-receive-connector-bypass-spam-etc%23new-answer', 'question_page');
                    }
                    );

                    Post as a guest















                    Required, but never shown





















































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown

































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown







                    Popular posts from this blog

                    Why not use the yoke to control yaw, as well as pitch and roll? Announcing the arrival of...

                    Couldn't open a raw socket. Error: Permission denied (13) (nmap)Is it possible to run networking commands...

                    VNC viewer RFB protocol error: bad desktop size 0x0I Cannot Type the Key 'd' (lowercase) in VNC Viewer...