Avoiding open relays

For more IT articles and tips specific to small and midsized businesses, visit SearchSMB.com.

One of the worst e-mail outages you can have is when you get on a spam "blacklist." When this happens, you'll get seemingly random complaints from users about their e-mail not being received, which is because the recipient subscribes to the blacklist, and won't accept mail from your domain because you are known to send spam.

This is no fun to troubleshoot, and once you figure it out, it can be a long and arduous process to get off the list, since the blacklist maintainers are only interested in punishing people and relish the pain they're putting you through. So, the key to staying off blacklists is making sure your e-mail system doesn't turn into an open relay.

One very good way to do this is to test your system. You can do that by going to the following Website and entering your domain.

http://www.abuse.net/relay.html

This will make several types of attempts to hack your system and use it to send an e-mail through. Hopefully, it will show you all the methods were unsuccessful, meaning your system is in good shape. Obviously, if one of the methods works, you will need to take steps to close it. This could mean reconfiguring your system, patching it, or perhaps even a major upgrade, depending on the vulnerability.

More on this topic Managing spam Guide to network administration Browse our other admin tips

One other thing you should test is your systems management. You want to make sure you can find all these unsuccessful attempts in the log files. If you have the system set up to notify you, or if you have intrusion detection facilities, see if those catch the attempts as well. It's important for you to know what your systems catch and what they don't catch.

Finally, I recommend you run this test periodically -- perhaps once every quarter as part of a health-checking process

Rate this Tip To rate tips, you must be a member of SearchNetworking.com. Register now to start rating these tips. Log in if you are already a member. Submit a Tip Digg This!     StumbleUpon     Del.icio.us    RELATED CONTENT Network Engineering Limit network energy consumption with computer cooling technologies Understanding remote scripting: Managing Windows networks using scripts, Part 9 Network mapping in Vista for Windows XP Recovering domain controllers after a server disk failure Recovering from a server disk failure: The shortcomings of NTBCKUP Enabling Windows Vista's Network Mapping feature on domain networks Prevent unauthorized USB devices with software restriction policies, third-party apps How to subnet: Subnetting calculations and shortcuts Using Windows Vista group policy to prevent unauthorized USB device use ISDN implementation: Part 3 -- Cisco router ISDN configuration Network Security at SMBs For an SMB firewall, what features should I look at? USB storage devices: Two ways to stop the threat to network security Network security: Empower users without endangering IT IM boom brings security concerns Firewall-free security is doable, but not ideal VoIP privacy on the WAN Common Exchange mail delivery issues Expand number of Internet Explorer's 'zones' Launch Internet Explorer in a separate process SMB Buying Decisions: WLAN security tools Network Security Monitoring Network forensics appliance gets storage boost and 10 GbE support Tracking NetFlow over MPLS helps airline with compliance Securing the new network architecture: Security for distributed, dynamic networks When it comes to data loss prevention, networking should be part of the conversation What is data loss prevention? -- An introduction to DLP What are the best methods for handling rogue access points? Internet monitoring vendor adds throttling, filtering, to its appliance How to interpret test scan results to assess network vulnerability Endpoint security locks down law firm's network Can a broadband network installer compromise your network security? RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary deep packet inspection (DPI)  (SearchNetworking.com) FCAPS  (SearchNetworking.com) Nessus  (SearchNetworking.com) netstat  (SearchNetworking.com) port mirroring  (SearchNetworking.com) RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.