Course 2824B: Implementing Microsoft internet security and acceleration server 2004 - Module 6

Module 6: Integrating ISAServer 2004 and Microsoft ExchangeServer. This module explains how Microsoft Exchange Server is a critical network service that is virtually always accessible from the Internet and how ISA Server 2004 can be used to provide security for Exchange Server and for securing client connections to Exchange.
Nội dung trích xuất từ tài liệu:
Course 2824B: Implementing Microsoft internet security and acceleration server 2004 - Module 6Module 6: IntegratingISAServer 2004 and Microsoft ExchangeServerOverview Issues in E-Mail Security Configuring ISA Server to Secure SMTP Traffic Configuring ISA Server to Secure Web Client Connections Configuring ISA Server to Secure Client ConnectionsLesson: Issues in E-Mail Security E-Mail Security Threats Overview E-Mail Access Using Web Clients E-Mail Access Using Outlook Clients E-Mail Access Using POP3, IMAP4, and NNTP Clients SMTP Protocol-Level Exploits Unwanted and Malicious E-Mail How ISA Server 2004 Secures Exchange ServerE-Mail Security Threats Overview Ensuring the security of e-mail includes: Ensuring that all e-mail client connections to the e-mail server are secure Protecting the e-mail servers from SMTP exploits Preventing unwanted or malicious e-mails from entering the organization’s networkE-Mail Access Using Web Clients Outlook Mobile Access ActiveSync XHTML, cHTML, HTML Enabled Mobile Devices Exchange Front-End Server Wirele ss Netwo rk ISA Server ExchangeBack-End Servers Outlook Web AccessE-Mail Access Using Outlook Clients Exchang Port 135 and dynamic e ports Front- End Outlook RPC Server Connections ISA Serve Outlook RPC Exchang r over HTTP e Connections Back- End Port 80 or 443 ServersE-Mail Access Using POP3, IMAP4, andNNTP Clients Exchang Port 110 or 995 Port 25 e Front- End POP3 Server Connections ISA Serve r IMAP4 Exchang Connections e Back- End Port 143 or 993 Port Servers 25SMTP Protocol-Level Exploits SMTP servers can be vulnerable to: Buffer overflow attacks when SMTP commands are sent with more than expected data, causing memory buffer overflows Mail relay attacks when an SMTP server is used to forward unwanted e-mail to Internet recipients SMTP command attacks where SMTP commands are used to compromise the server or gain information about the server or recipients on the serverUnwanted and Malicious E-Mail Unwanted e-mail is unsolicited commercial Consumes e-mail that: server and network resources Reduces user productivity and increases administrative effort Can be filtered using an application-level filter May result in exposure to legal liability Malicious e-mails contain viruses or worms that: Damage data or computers or consume network and computer resources Increase administrative cost and effort Increase the risk of an information leak How ISAServer 2004 Secures Exchange Server Mail publishing Exchang wizards e Secure access Front- for Web End clients Server Secure ISA accessExchang Serve for Outlook e r clients Back- EndServers Filtering unwanted e- mail SMTP command filteringLesson: Configuring ISAServer to SecureSMTP Traffic How ISA Server Secures SMTP Traffic How to Configure ISA Server to Secure SMTP Traffic How SMTP Filtering Works How to Configure the SMTP Application Filter How SMTP Message Screener Works How to Implement SMTP Message Screener Integrating ISA Server and Exchange Server to Secure SMTP TrafficHow ISAServer Secures SMTP Traffic Use Mail Publishing Wizard to publish Exchang SMTP Servers e Front- End Server Use SMTP application filter ...