In order to maintain their excellent reputation for secure software, Alt-N Technologies, developer of Exchange alternative MDaemon Messaging Server, continually perform rigorous testing across their portfolio of products, including both current and historic releases.
security
Limit the Chance of Your MDaemon Accounts Being Hijacked and Abused by Spammers
This year in particular, I’ve seen an increasing number of users’ email account credentials become compromised, which has allowed spammers free reign to use their mail server to send spam out to the Internet.
The usual result is an overflowing outbound mail queue, thousands of bounce messages coming in and your server’s IP address being blacklisted.
The first thing to note is that if your company has an email server, you should assume that spammers will always be trying to hijack users’ accounts by guessing their passwords.
In this post I will run through a few simple pro-active settings checks that can reduce the chances of this happening and – in the unfortunate event that it does happen – can limit the resulting negative effects.
Spike in virus infected emails – take extra care
We’ve seen a sharp increase today in new virus variants getting through to email users due to the speed at which they’re evolving to avoid detection.
Identical messages can arrive sometimes minutes apart but already containing different variants of the virus, making it a game of cat and mouse for the security vendors to keep up.
The fake Amazon order confirmation complete with suspicious-looking ZIP file is the one we’ve heard a lot of reports about but I should stress these emails change by the minute so it’s worth just thinking twice before you click links or open anything resembling an attachment.
Meeting SecurityMetrics PCI Compliancy when using MDaemon
We have recently been dealing with a range of customers who are using the SecurityMetrics PCI compliance check on their network and are in the process of working through the highlighted security vulnerabilities the report has brought to their attention. Continue reading
RIM release important security patch for BES – also affects MDaemon customers
Research In Motion™ have just released an important security patch for the BlackBerry Enterprise Server platforms that could potentially affect MDaemon Messaging Server.
This patch addresses a vulnerability in BlackBerry Enterprise Server (BES) that process images and so only affects MDaemon installations that have the optional BES server installed.
If you’re an MDaemon customer running the BES component we recommend you follow the instructions in this knowledge base guide to be on the safe side.
Support queries shared: MailStore user authentication failing despite correct password
We have seen two separate issues recently where MailStore had been configured to use directory services to synchronise its user list with an external source. One being an MDaemon mail server and the other on a machine running Kerio Connect.
In both cases, even though the IMAP user account details were correct, the password check failed with an error that suggested a bad authentication result.
Support queries shared: ‘NOT SCANNED’ messages in quarantine folder
As you can imagine, this one’s got the potential to cause a fair amount of head-scratching – I see it quite a lot too.
Symptoms are that messages are being incorrectly quarantined by MDaemon’s security module SecurityPlus even though the message is from a trusted sender and the attachment is clean of any viruses. Typically when we look into these examples there is one common factor.
SecurityPlus – Important update for all customers (v4.1.5)
An important update of SecurityPlus has been released and all installations should be upgraded to version 4.1.5 as soon as possible.
MDaemon 13 beta preview: Part 3 – Detect and stop hijacked MDaemon accounts
One of the more common customers support calls i get relates to MDaemon suddenly sending vast amounts of spam email. This floods the outbound Internet connection and everything crawls to a halt.
Secondary to this the server’s public IP address can get listed on various external SMTP blacklists which the customer then has to request removal from.
Are you seeing spam in MDaemon and unsure how to stop it?
Some of our most common MDaemon support enquiries we get relate to users receiving spam.
Typically the amount of spam has either suddenly increased and there is a flood of junk messages or its just a specific message that looks to be obviously spam but has somehow made its way through.
Before picking up the phone to support you might find it useful to follow this simple guide to find out why MDaemon has not treated this message quite as expected.
