8 Exchange 2003 security tips in 8 minutes

"8 Exchange 2003 security tips in 8 minutes" is excerpted from a chapter in David McAmis and Don Jones' book, Microsoft Exchange Server 2003 Delta Guide, published by Sams Publishing.

To download a .pdf version of Chapter 8, "Security," in David McAmis and Don Jones' new book, click here.

Table of contents

Server security enhancements
[ Return to Table of Contents ]

Security has always been a concern for Exchange administrators. Since the introduction of Exchange 5.5, the tools for securing the Exchange platform have grown with every release of Exchange and the Windows Server operating system in general.

In Exchange 2003, security is a vital concern, and much time and effort have been placed on getting the security right from the start.

From the "secure by design" operating system to full support for Kerberos authentication for both servers and clients, Exchange 2003 provides a tough set of security features to crack.

One of the key areas where security administrators can really make a difference when working with Exchange is with the security of the servers. Aside from the normal security concerns (physical access, passwords, and so on), several security concerns are specific to deploying Exchange servers. The following sections examine some of the enhancements in Exchange 2003 that make it easier to secure your messaging and collaboration platform.

• Secure your operating system
• SSL security
• Kerberos authentication
• RPC over HTTP
• Cross-Forest SMTP Authentication

Client security enhancements
[ Return to Table of Contents ]

In addition to security improvements for Exchange servers, enhancements have been made to security of the clients that access Exchange. Here you will find information to help you understand some of the new security features and functionality as you think about deploying these clients.

• Windows rights management
• Kerberos
• S/MIME

To download a .pdf version of Chapter 8, "Security," in David McAmis and Don Jones' new book, click here.

About the authors:

David McAmis is an enterprise architect and partner in a consulting firm in Sydney, Australia. David has written a number of books and more than 100 articles that have appeared in magazines and journals.

Don Jones, MCSE, CTT+, is an independent consultant and founding partner of BrainCore.Net. Don is the author of more than a dozen books and the creator and series editor of Sams Publishing's Delta Guide series. He is also a contributing editor and columnist for Microsoft® Certified Professional Magazine, the Microsoft technology columnist for CertCities.com, and a speaker at technology conferences.

Rate this Tip To rate tips, you must be a member of SearchExchange.com. Register now to start rating these tips. Log in if you are already a member. Digg This!     StumbleUpon     Del.icio.us    RELATED CONTENT Email Encryption How to protect an Exchange journaling mailbox from email spoofing Using Exchange Server journaling as an email-archiving solution Deploying ISA Server as a firewall for Exchange Server mobile devices How to set up an SSL certificate to encrypt OWA and ActiveSync traffic SecureZip improves encryption for Microsoft Outlook A Microsoft Outlook email security tutorial -- 8 tips in 8 minutes Zip and encrypt Microsoft Outlook email attachments Microsoft Outlook email encryption simplified Microsoft repackages e-mail hosting service Time lag opening and sending encrypted e-mails Microsoft Exchange Server Password Management Unsecured devices worry IT professionals Protecting Outlook Web Access from keystroke loggers Creating one password for both local and Microsoft Outlook user accounts 'Error: Domain not available' after password change Multiple new Sober variants spy on passwords Securing Exchange mailboxes from internal attacks Password prompt when attempting to view a replicated public folder Third-party tools to crack Windows passwords Loophole for relaying spammers Messaging security pros get back to basics SMTP Troubleshooting Microsoft Exchange Server Event ID error 6009 How to lock down an SMTP relay to prevent spam in Exchange Server 2003 Tool helps identify inbound Exchange Server email flow issues Configure SMTP relay restrictions in Exchange Server 2003 to stop spam Exchange email sent to a domain using SPF authentication is returned Why can't POP3 clients receive Exchange Server email? Exchange event sink scripting error when configuring email disclaimer Configure SMTP connection limits in Exchange Server 2003 and SBS Reconfigure an existing Exchange Server user account for a new user Improve Exchange 2003 Internet connectivity, mail flow and performance RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary SMTP  (SearchExchange.com) RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.