A. Multipronged message filtering in the perimeter network is available through the Edge Transport server role; however, for small to medium organizations, Microsoft now offers the "cloud" filtering (as an Internet-based service) through Exchange Hosted filtering. Microsoft Exchange Hosted filtering helps to protect client emails from viruses, spyware, spam and other forms of malware. Microsoft Exchange Hosted filtering services block unwanted email messages from entering your organization. The Exchange Hosted filtering services are an ideal solution for any organization that is looking to enhance their protection against spam, virus, and phishing attacks.

E. Microsoft Exchange Hosted Services include all of the choices in the question except E.

C. Exchange Hosted Filtering provides antivirus scanning using your choice of four engines (Trend Micro, Symantec, Sophos, and Kaspersky Lab).

D. Microsoft Exchange Hosted continuity service stores a copy of each massage in a 30-day message repository. In case of disaster, your users will be able to access email in an offsite message repository through a password-protected web-based interface at any time to read, compose, and reply to messages.

D. Connection filtering checks the IP address of the remote SMTP server and then uses a variety of IP Block lists, IP Allow lists, IP Block provider, and IP Allow provider services to block or allow a connection from a specific IP address.

A. Sender filtering uses an administrator-defined list of senders or sender domains to block, delete, drop, or quarantine an inbound message. Sender filtering compares the sender's MAIL FROM: SMTP command to this customized list and responds accordingly.

D. Sender ID filtering checks whether the sender is spoofed by using the IP address of the sending server and the purported responsible address (PRA) of the sender.

C. Sender reputation filtering relies on persisted data about the IP address of the sending server to determine what action, if any, to take on an inbound message. This agent collects analytical data from SMTP sessions, message content, sender ID verification, and general sender behavior and creates a history of sender characteristics. It uses all this knowledge along with sender reputation level (SRL) to determine whether the message is coming from spammers or malicious senders. You also can define a threshold. Based on your configuration and threshold, senders whose SRL exceeds the threshold will be temporarily blocked for 48 hours.

B. Recipient filtering is very similar to sender filtering. It compares the recipient's RCPT TO: SMTP command to the administrator-defined list. If the result is true, it will block the message. It also compares recipients to the local recipient directory to determine if the message is addressed to valid recipients. If there is no valid recipient in the local directory, the message can be rejected at the organization's network perimeter.

B. Attachment filtering filters messages based on the attachment. You can block, drop, and reject a message and its attachment or strip the attachment and allow the message.

A. To disable the sender-filtering agent using the EMS, run the set-SenderFilterConfig -Enabled $false command.

A. You can customize the message using the Set-ContentFilterConfig command in the EMS (EMS).

D. Set-ContentFilterConfig –QuarantineMailbox quarantine@mycompany.com allows you to designate the quarantine mailbox.

A. Set-ContentFilterConfig –BypassedSenders mcitp.user1@mcitpdomain.com allows you to exclude a specific email address instead of a whole domain.

A. Set-ContentFilterConfig –BypassedSenderDomains *.companyabc.com allows you to exclude the whole domain instead of entering the email address of each and every individual. This saves time as it will consume fewer entries in your list. The BypassedSenderDomains parameter allows you to specify up to 100 external domains.

A, B, and C. Attachment filtering allows you to filter out content in messages. It allows you to filter out both the message and attachment or just the attachment. You can choose from three options: rejecting the message to stop delivery of the message and attachments to the recipient and sends an undeliverable response to the sender, stripping the attachment from the message and then delivering the email to the recipient with a notification that the attachment in the message has been removed, or using SilentDelete on the message to stop delivery of the message and attachments to the recipient without sending any undeliverable response to the sender.

D. The SRL rating is a numerical value between zero and nine. Zero indicates that there is less than a one percent chance that the sender is a spammer. Nine indicates that there is more than a 99 percent chance that the sending is a spammer.

E. The Sender Reputation Level (SRL) value is derived from all four of the characteristics noted.

C. The former Antigen antivirus is now integrated in Exchange Server 2007 as Microsoft Exchange Forefront Security. McAfee and Norton are different antivirus manufacturers, and operate independently from Microsoft.

C. Forefront Security for Exchange uses up to five antivirus solutions to protect your messaging infrastructure against viruses, phishing, worms, and other threats. By using five antivirus engines, you increase the chances of getting an update quickly before the virus affects your environment. Also, if one engine goes offline or fails, other engines continue to protect your messaging environment without delaying mail delivery.