In order to maintain their excellent reputation for secure software, Alt-N Technologies, developer of Exchange alternative MDaemon Messaging Server, continually perform rigorous testing across their portfolio of products, including both current and historic releases.
This year in particular, I’ve seen an increasing number of users’ email account credentials become compromised, which has allowed spammers free reign to use their mail server to send spam out to the Internet.
The usual result is an overflowing outbound mail queue, thousands of bounce messages coming in and your server’s IP address being blacklisted.
The first thing to note is that if your company has an email server, you should assume that spammers will always be trying to hijack users’ accounts by guessing their passwords.
In this post I will run through a few simple pro-active settings checks that can reduce the chances of this happening and – in the unfortunate event that it does happen – can limit the resulting negative effects.
We’ve seen a sharp increase today in new virus variants getting through to email users due to the speed at which they’re evolving to avoid detection.
Identical messages can arrive sometimes minutes apart but already containing different variants of the virus, making it a game of cat and mouse for the security vendors to keep up.
The fake Amazon order confirmation complete with suspicious-looking ZIP file is the one we’ve heard a lot of reports about but I should stress these emails change by the minute so it’s worth just thinking twice before you click links or open anything resembling an attachment.
Research In Motion™ have just released an important security patch for the BlackBerry Enterprise Server platforms that could potentially affect MDaemon Messaging Server.
This patch addresses a vulnerability in BlackBerry Enterprise Server (BES) that process images and so only affects MDaemon installations that have the optional BES server installed.
If you’re an MDaemon customer running the BES component we recommend you follow the instructions in this knowledge base guide to be on the safe side.
As you can imagine, this one’s got the potential to cause a fair amount of head-scratching – I see it quite a lot too.
Symptoms are that messages are being incorrectly quarantined by MDaemon’s security module SecurityPlus even though the message is from a trusted sender and the attachment is clean of any viruses. Typically when we look into these examples there is one common factor.
An important update of SecurityPlus has been released and all installations should be upgraded to version 4.1.5 as soon as possible.
One of the more common customers support calls i get relates to MDaemon suddenly sending vast amounts of spam email. This floods the outbound Internet connection and everything crawls to a halt.
Secondary to this the server’s public IP address can get listed on various external SMTP blacklists which the customer then has to request removal from.
Some of our most common MDaemon support enquiries we get relate to users receiving spam.
Typically the amount of spam has either suddenly increased and there is a flood of junk messages or its just a specific message that looks to be obviously spam but has somehow made its way through.
Before picking up the phone to support you might find it useful to follow this simple guide to find out why MDaemon has not treated this message quite as expected.