Exchange Server and exclusions for virus scanners

Microsoft has updated the recommendations for exclusions for virus scanners on Exchange Server: Specifically, contrary to the original recommendation, these directories and processes should no longer be excluded from the virus scanner: Existing exclusions for virus scanners should therefore be adjusted. The script from Paul Cunningham, which creates a list of all exclusions, is suitable for new Exchange installations: Unfortunately, ... Read more

Windows Extended Protection and Exchange Server

The "Windows Extended Protection" security feature was introduced with a security update in August 2022 for Exchange Server 2013, 2016 and 2019 and protects against man in the middle (MitM) attacks. In small organizations where there is only a single Exchange Server, without load balancers and web application firewalls, Windows Extended Protection can be activated quite easily. In ... Read more

New security updates for Exchange Server (February 2023)

Microsoft has released new security updates for Exchange 2013, 2016 and 2019. A total of 4 vulnerabilities classified as important have been fixed. Details on the closed vulnerabilities can be found here: As you can see, all 4 vulnerabilities are Remote Code Execution vulnerabilities, so the updates should be installed as soon as possible. Here it goes ... Read more

Microsoft asks for feedback on Exchange updates

Microsoft would like to improve the installation of Cumulative Updates (CUs) and Security Updates (SUs) for Exchange Server and is therefore asking for feedback from administrators in an anonymous online survey. Until the end of January 2023, Exchange administrators can fill out an online form and, if desired, also provide contact details to discuss possible improvements. Since readers of my blog keep ... Read more

New security updates for Exchange Server (January 2023)

Microsoft has released new security updates for Exchange Server 2013, 2016 and 2019 today. The security updates also include a new security feature, which currently still needs to be activated manually: Click here to download the security updates: The security updates fix the following security vulnerabilities classified as important: New security feature: Certificate Signing of PowerShell Serialization Payload To prevent ... Read more

Renew the certificate for the Exchange Server Back End

I have already written several times about the configuration of certificates on Exchange servers, but mostly I have dealt with the front end certificates. However, Exchange servers also have a back end which is configured with a self-signed certificate. The back end certificate does not have to be replaced by a publicly valid certificate or by a ... Read more

Small script to determine the Exchange Server status

In this article there is once again a small script that can display the status of important Exchange parameters. The script clearly shows the status of the databases, queues, services and storage space. So you can get a first quick overview of the Exchange status in case of problems. The script can be downloaded from GitHub: ... Read more

Exchange Server: Send report on mailbox size to users

Many admins are familiar with the problem that size limits have been configured for mailboxes and every now and then there are messages about full mailboxes from users. As an admin, you really only have two options here: either you increase the mailbox size for the user, or you tell the user to clean up and delete old mails. The first ... Read more

Exchange 2019: Configure size limit for emails

A size limit for emails can be configured at various points on an Exchange server. The limits can be configured very granularly, for example at mailbox or protocol level. This article lists the options available. This article also applies to Exchange 2016. TransportConfig: Global size limit The global limits for emails are configured in TransportConfig. Read more

New security updates for Exchange Server (November 2022)

On Tuesday, Microsoft released new security updates for Exchange Server 2013, 2016 and 2019. The update closes the ProxyNotShell vulnerability (CVE-2022-41040 and CVE-2022-41082), which was known and actively exploited in September. Click here to download the security updates: Microsoft recommends installing the update as soon as possible. Click here for the article on the Exchange ... Read more