Have you ever logged into your email to find tons of bounce-back messages (out-of-office replies, NDR messages, invalid recipient messages) in response to messages you never sent? For many users, their first thought is that they need to change their email password. However, changing your email password will not prevent this. Why? Because what you are receiving is known as backscatter, and has nothing to do with your email account being hacked.
Spammers often forge the return-path in their outbound messages to cover up their true identity. If the forged address in these spam messages was your address, then you are likely to receive the bounce-back messages and auto-responders in response to these messages.
So how do you prevent this? MDaemon includes Backscatter Protection. Backscatter Protection works by adding a special key to the return-path of all outbound mail. When MDaemon receives an out-of-office reply or non-delivery message, it looks for that special key. If the key is missing, then we know the bounce-back message is not legitimate and can be discarded.
When Backscatter Protection is disabled, the return-path of a message looks like this:
When Backscatter Protection is enabled, an extra series of characters beginning with prvs= is added to the return path – like this:
It is this extra series of characters that the Backscatter Protection feature looks for in bounce-back messages.
Check out the following video to learn more about Backscatter Protection and how to enable it in MDaemon. If you have questions, please feel free to leave us a comment & let us know!
In addition to its built-in spam filter, MDaemon includes many other security features that can be used to fight spam. In this webinar, we take you through an in-depth explanation of MDaemon’s spam-fighting features, and discuss recommended settings for best results.
As I mentioned in a previous post, you can do some creative things with MDaemon’s content filter. Recently, one of our users had asked in our community forums if there was a way to send a notification message to a designated user or email address whenever a new account is created in MDaemon. I’ll walk you through the steps to achieve this in this tutorial video.
Has this happened to you? You're the MDaemon administrator, and one of your users has contacted you in a panic because he accidentally deleted all of his contacts from his ActiveSync connected device. The device then re-synced with the server, at which point all contacts were deleted from the server. This is a good case in support of backup & archiving. You just never know when you'll need a backup copy of your data, and most businesses these days can't afford to NOT have a backup solution in place.
To restore the user's contacts, you would simply need to restore the backup copy of the user's addrbook.mrk file, which you can find in the Contacts.IMAP folder of the user's mailbox (example - C:\MDaemon\Users\example.com\frank.thomas\contacts.IMAP). You may also see a series of .MSG files in the same directory within your backup. These .MSG files are created from the contents of the addrbook.mrk file by Outlook Connector. You will not need to restore these .MSG files since they will be recreated automatically. This same concept also applies to your calendar entries (Calendar.mrk), tasks (TaskList.mrk) and notes (Notes.mrk).