Spamcop.net on securing MS Exchange systems against relaying. If you run an Exchange server that’s accessible from the net, this is a must-read. Summary:
- Exchange 5.0 is unsecureable (yikes!)
- Exchange 2000, installed as part of MS IIS/5, is open by default