Limit the Chance of Your MDaemon Accounts Being Hijacked and Abused by Spammers

This year in particular, I’ve seen an increasing number of users’ email account credentials become compromised, which has allowed spammers free reign to use their mail server to send spam out to the Internet.

The usual result is an overflowing outbound mail queue, thousands of bounce messages coming in and your server’s IP address being blacklisted.

The first thing to note is that if your company has an email server, you should assume that spammers will always be trying to hijack users’ accounts by guessing their passwords.

In this post I will run through a few simple pro-active settings checks that can reduce the chances of this happening and – in the unfortunate event that it does happen – can limit the resulting negative effects.

Continue reading

Spike in virus infected emails – take extra care

We’ve seen a sharp increase today in new virus variants getting through to email users due to the speed at which they’re evolving to avoid detection.

Identical messages can arrive sometimes minutes apart but already containing different variants of the virus, making it a game of cat and mouse for the security vendors to keep up.

The fake Amazon order confirmation complete with suspicious-looking ZIP file is the one we’ve heard a lot of reports about but I should stress these emails change by the minute so it’s worth just thinking twice before you click links or open anything resembling an attachment.

Continue reading

RIM release important security patch for BES – also affects MDaemon customers

Research In Motion™ have just released an important security patch for the BlackBerry Enterprise Server platforms that could potentially affect MDaemon Messaging Server.

This patch addresses a vulnerability in BlackBerry Enterprise Server (BES)  that process images and so only affects MDaemon installations that have the optional BES server installed.

If you’re an MDaemon customer running the BES component we recommend you follow the instructions in this knowledge base guide to be on the safe side.

Continue reading

Support queries shared: MailStore user authentication failing despite correct password

We have seen two separate issues recently where MailStore had been configured to use directory services to synchronise its user list with an external source. One being an MDaemon mail server and the other on a machine running Kerio Connect.

In both cases, even though the IMAP user account details were correct, the password check failed with an error that suggested a bad authentication result.

Continue reading

Support queries shared: ‘NOT SCANNED’ messages in quarantine folder

As you can imagine, this one’s got the potential to cause a fair amount of head-scratching – I see it quite a lot too.

Symptoms are that messages are being incorrectly quarantined by MDaemon’s security module SecurityPlus even though the message is from a trusted sender and the attachment is clean of any viruses. Typically when we look into these examples there is one common factor.

Continue reading