Tightening Exchange Server 2010 security

Here's a quick checklist to tighten the security of Exchange server 2010.
The full article can be found here:

Don’t overlook these Exchange security vulnerabilities

Gaps in the patching process
Weak passwords
Leaving private data in public folders
Outlook Web Access and Outlook Web App
SMTP and POP3 access
Shared Exchange administrator accounts

Defending Exchange Server 2010 with native security tools

Transport security in Exchange 2010
Protecting Exchange 2010 users from spoofing
Exchange Server 2010 and Active Directory integration
Role Based Access Control (RBAC) in Exchange 2010
Client access server vulnerabilitiesProtecting Exchange Server 2010 with ForeFront

Exchange Server 2010 post-deployment security checklist

Install antivirus software for Exchange 2010
Deploy a certificate to your Exchange 2010 client access server

Take steps to control spam in Exchange 2010

Enable RPC encryption in Exchange 2010

Deploy Information Rights Management in Exchange 2010

Configure ActiveSync mailbox policies in Exchange 2010

Run the Exchange Best Practices Analyzer

All about Forefront Protection 2010 for Exchange

Exchange Server 2010 already has plenty of antispam transport agents built in.

Forefront Protection for Exchange Server (On-premises)

Microsoft Forefront Protection Server Management Console (FPSMC) 2010

New Forefront features to look for

Third-party spam and virus protection

Can the cloud reduce your spam carbon footprint? 

Deployment recommendations
Use the Forefront Protection 2010 for Exchange Server Capacity Planning Tool.

Custom email filtering with Forefront Protection 2010 for Exchange

ForeFront Protection 2010 for Exchange filter types

ForeFront Protection 2010 for Exchange action types

Exchange wildcard certificates: Do the benefits outweigh the risks?

What is a wildcard certificate?
Wildcard certificate security issues

Wildcard certificate management issues

Wildcard certificate compatibility with Exchange Server

Responding to Outlook Web App 2010 security concerns

Addressing Outlook Web App 2010 security concernsPublic access security in OWA 2010

Information Rights Management protection in Exchange 2010 SP1
Outlook Web App and IRM aggravations

Discussing Exchange Server security risks and vulnerabilities

Analyzing Exchange Server security risks and vulnerabilities

Authenticating to Exchange 2010 via NTLM: Smart move or security risk?

Addressing Outlook Web App 2010 security concernsPublic access security in OWA 2010

Free Exchange add-on enhances native spam filtering

Free Exchange add-on picks up native spam filtering slack
IMF Tune