T 3.60 Incorrect configuration of Exchange Server

Misconfigurations of a software system are a frequent reason for successful attacks. Due to the complexity of a Microsoft Exchange system, the wealth of configuration settings and the parameters influencing each other may entail numerous security problems.

Some typical misconfigurations are listed in the following:

• The Exchange server components are installed and operated on inappropriate systems.
  
  This entails significant consequences for the administration rights on the server and prevents a reasonable separation of the administration functions. Furthermore, this results in disadvantages regarding the performance and with regard to the reliability.
• The access restrictions to an Exchange server are insufficient.
  
  This may cause security issues particularly in combination with weak or incorrect access authorisations to further services or email databases.

• Often, extensive rights are required initially in order to create or initialise an Exchange database, whereby these are no longer needed for day-to-day operations. If the default access rights are not modified, this may grant unauthorised persons access to the email database or grant rights to users exceeding their authorisations.

• No encryption is used.
  
  The encryptions of the network communication (port encryption) and of the email communication are normally disabled in a default installation.
  
  In order to use the encryption, it must be configured expressly. Otherwise, the email data will be unprotected during delivery.

The aspects mentioned are examples for possible security issues caused by misconfigurations. Depending on the corresponding application environment, further issues may occur.