Microsoft Exchange and Active Directory Blog
Extended support for Exchange Server 2013 will end on April 11, 2023. As of April 11, there will no longer be any security updates for Exchange 2013 in addition to the lack of support. So there will be little time left to migrate to a newer Exchange Server version or to Microsoft 365. Anyone still using Exchange 2013 Server should ... Read more
Microsoft has released new security updates for Exchange Server 2013, 2016 and 2019 today. The security updates also include a new security feature, which currently still needs to be activated manually: Click here to download the security updates: The security updates fix the following security vulnerabilities classified as important: New security feature: Certificate Signing of PowerShell Serialization Payload To prevent ... Read more
I have already written several times about the configuration of certificates on Exchange servers, but mostly I have dealt with the front end certificates. However, Exchange servers also have a back end which is configured with a self-signed certificate. The back end certificate does not have to be replaced by a publicly valid certificate or by a ... Read more
In this article there is once again a small script that can display the status of important Exchange parameters. The script clearly shows the status of the databases, queues, services and storage space. So you can get a first quick overview of the Exchange status in case of problems. The script can be downloaded from GitHub: ... Read more
I have just uploaded version 3.12 of the Exchange Reporter. The new version fixes 3 small bugs: The current version can be downloaded here: If you find any problems, please use the following form to report them. You can also use the form to send feature requests or other suggestions: I am currently working on the Exchange ... Read more
I wish all visitors, readers, supporters and friends a happy and healthy new year, may all your good intentions and wishes come true in the new year. As every year, I would like to take this opportunity to look back on the past year. Visitor numbers fell slightly in 2022. There were just under 2.1 million visitors in 2022, ... Read more
I wish all friends, readers and supporters a merry and peaceful Christmas, take care of yourselves and stay healthy. I wish all admins who are looking after the well-being of the systems during or between the holidays every success. Take a few days off as soon as possible and treat yourselves and your loved ones to something nice. ... Read more
Attacks on outdated Exchange servers are currently underway again. Specifically, the ProxyNotShell vulnerability, which became known in October of this year, is being exploited again. The new attack method has been christened OWASSRF. The IIS rewrite rules published by Microsoft are bypassed in this new attack method. The only thing that helps at the moment is to install the available security updates from November: On the ... Read more
In this article I try to explain why you should avoid some special Backup MX configurations. The configuration of a Backup MX at the provider or hoster is outdated and should no longer be used. Backup MX at the provider I have often come across the configuration with a Backup MX entry for the provider. The MX entries ... Read more
Many admins are familiar with the problem that size limits have been configured for mailboxes and every now and then there are messages about full mailboxes from users. As an admin, you really only have two options here: either you increase the mailbox size for the user, or you tell the user to clean up and delete old mails. The first ... Read more
