1 Dec
2011
1 Dec
'11
4:30 a.m.
An Exchange 2000 server is ancient. I wouldn't waste time with it unless there was no possible way to get an updated version; ie, Exchange server 2010.
The client won't pay for an Exchange update just to support a handful of external IMAP users.
It works perfectly well internally, using a Postfix relayhost.
Terry
If the client is inept enough to run Exchange 2000 for only a handful of users, you're probably wasting your time attempting to sanitize IMAP commands.
If your contract with them mandates that you secure their server, you'll most likely have to replace their broken software.