Announcement

Collapse
No announcement yet.

How to secure the email transmission using TLS end to end ?

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • How to secure the email transmission using TLS end to end ?

    Hi All,

    hopefully I'm in the correct way of thinking, what I want is to test TLS security email end to end (between my company and the client company).

    I have setup all in one Exchange Server 2007 (HT-CAS-MBx role) and alrady got the SSL certificate for securing my OWA, so does this means by default TLS security is happening here ?

    I notice that i alrady setup the TLS option in the receive connector.

    any comments would be greatly appreciated.

    Thanks,

  • #2
    Re: How to secure the email transmission using TLS end to end ?

    SSL is TLS. If you are using FBA which is the default with Exchange 2007 then you are using SSL between the client and the server. This ensures the communication between the client and server cant be tampered with in transit.
    The message transmission on the other hand requires TLS at both ends (your server and the MTA it is trying to communicate with) for TLS to work during the SMTP conversation. If i recall Exchange 2007 uses opportunistic TLS by default. Which means that it will try to communicate with the remote MTA using SSL if that fails it falls back to ESMTP.

    http://www.msexchange.org/tutorials/...nizations.html

    You may find the above article helpful.

    Comment


    • #3
      Re: How to secure the email transmission using TLS end to end ?

      If both ends support TLS, then Exchange will use TLS (aka SMTP over SSL).
      That usually means the SSL certificate needs to match the MX record host name so the session can be established and a trusted certificate implemented.
      However the TLS implementation varies between MTAs and I have seen it used even if the trust isn't established on the SSL certificate.

      You can tell if TLS has been used as it will be written in the headers.

      Simon.
      --
      Simon Butler
      Exchange MVP

      Blog: http://blog.sembee.co.uk/
      More Exchange Content: http://exchange.sembee.info/
      Exchange Resources List: http://exbpa.com/
      In the UK? Hire me: http://www.sembee.co.uk/

      Sembee is a registered trademark, used here with permission.

      Comment


      • #4
        Re: How to secure the email transmission using TLS end to end ?

        thanks to all for the reply, it seems that my Exchange Server 2007 sounds good and uses TLS already by default )

        Cheers.

        Comment

        Working...
        X