如何防止使用我的内部接受域的外部欺骗电子邮件

Question

您需要通过运行以下命令来删除绕过发件人地址欺骗检查的权限：

Get-ReceiveConnector "name of the internet receive connector" | Get-ADPermission -user "NT AUTHORITY\Anonymous Logon" | where {$_.ExtendedRights -like "ms-exch-smtp-accept-authoritative-domain-sender"} | Remove-ADPermission

如果这不能解决问题（例如对于 Exchange 2013 CU5+），您应该执行以下操作：

使用以下方式阻止您自己的域名

Set-SenderFilterConfig -BlockedDomains mydomain.com

Set-SenderFilterConfig -InternalMailEnabled $true
删除匿名用户的 ms-Exch-SMTP-Accept-Any-Sender

Get-ReceiveConnector "name of the internet receive connector" | Get-ADPermission -user "NT AUTHORITY\Anonymous Logon" | where {$_.ExtendedRights -like "ms-Exch-SMTP-Accept-Any-Sender"} | Remove-ADPermission
允许从 LAN 进行开放中继（如果需要）：

Get-ReceiveConnector "name of your LAN Open Relay connector" | add-ADPermission -user "NT AUTHORITY\Anonymous Logon" -ExtendedRights "ms-Exch-SMTP-Accept-Any-Sender"

PS 确保在执行这些操作后重新启动传输服务。

Answer 1

您需要通过运行以下命令来删除绕过发件人地址欺骗检查的权限：

Get-ReceiveConnector "name of the internet receive connector" | Get-ADPermission -user "NT AUTHORITY\Anonymous Logon" | where {$_.ExtendedRights -like "ms-exch-smtp-accept-authoritative-domain-sender"} | Remove-ADPermission

如果这不能解决问题（例如对于 Exchange 2013 CU5+），您应该执行以下操作：

使用以下方式阻止您自己的域名

Set-SenderFilterConfig -BlockedDomains mydomain.com

Set-SenderFilterConfig -InternalMailEnabled $true
删除匿名用户的 ms-Exch-SMTP-Accept-Any-Sender

Get-ReceiveConnector "name of the internet receive connector" | Get-ADPermission -user "NT AUTHORITY\Anonymous Logon" | where {$_.ExtendedRights -like "ms-Exch-SMTP-Accept-Any-Sender"} | Remove-ADPermission
允许从 LAN 进行开放中继（如果需要）：

Get-ReceiveConnector "name of your LAN Open Relay connector" | add-ADPermission -user "NT AUTHORITY\Anonymous Logon" -ExtendedRights "ms-Exch-SMTP-Accept-Any-Sender"

PS 确保在执行这些操作后重新启动传输服务。

如何防止使用我的内部接受域的外部欺骗电子邮件

答案1

相关内容