Today, Microsoft is ending support for Windows 7. And while MDaemon and Security Gateway continue to support Windows 7, it’s a good idea to consider updating your Windows installation or migrating to an updated system.
Fortunately for MDaemon and Security Gateway users, moving to a new server isn’t a complicated process.
Moving MDaemon to a New Server or OS
Moving MDaemon to a new server using the same directory path involves these tasks:
On the existing server, remove the MDaemon system service.
Deactivate MDaemon & its associated plugins.
Copy the MDaemon directory to the same path on the new server.
Install the same version of MDaemon on the new server.
If you’re moving MDaemon to a different directory path on the new server, you’ll need to update a few configuration files to point to the proper path, but this process isn’t complicated. Simply follow the steps outlined here to migrate to the new server on a new path.
Moving Security Gateway to a New Server or OS
To move Security Gateway, simply make a backup copy of the Security Gateway database, shut down Security Gateway, install Security Gateway on the new server, and then restore the database file.
“Will my software stop working after Microsoft ends support for Windows 7?”
MDaemon and Security Gateway will continue to support Windows 7, but because Microsoft will no longer provide automatic security updates, it’s a good idea to move to a newer operating system to remain secure.
With 2019 coming to a close, I’d like to announce a few product updates. 2020 is going to be an exciting year for new features, but until then, we’ve made a few improvements in MDaemon, MDaemon Connector for Outlook, and Security Gateway for Email Servers.
New Security Features
Macro Detection in Email Attachments
A common tactic used by scammers to distribute malware is to send emails containing attachments with a message asking the user to enable macros. In fact, this tactic has been used extensively by the Emotenet botnet during its recent resurgence after a period of inactivity. Once enabled, these macros can unleash malware that destroys your data or infiltrates your network. To help protect users from these threats, a new option was added to MDaemon Antivirus and SecurityGateway to detect macros in documents scanned by Cyren AV and flag them as infected for further review by the administrator.
Authentication Failure & Frozen Account Reports
To help users maintain awareness of unauthorized account access attempts, a new setting was added to MDaemon’s Dynamic Screening feature to notify the user after a given number of failed authentication attempts or after the account has been frozen.
Regulations & Backup/Restore Features
Email Archiving in SecurityGateway
Any business that has lost data to a malware attack or suffered fines for not meeting regulatory requirements will benefit from a solid backup and recovery solution. To help businesses meet these needs, archiving was added to SecurityGateway. Advanced searching options make it easy to find archived messages based on the sender, recipient, message subject, message content, date range, attachment, and much more.
Businesses that need to meet regulatory and compliance requirements or provide document retention for litigation requests can use SecurityGateway’s new Journaling feature. Journaling creates a backup copy of every email sent and received, along with a summary of the message’s sender, recipient, subject, and date, and stores it in a separate mailbox that cannot be accessed by end users.
New Data Leak Prevention Rules
Your data is your business’ most valuable asset, so if it lands in the wrong hands, it could lead to devastating financial losses as well as a loss of trust. To help businesses keep confidential data such as credit card numbers, Social Security numbers, and bank account numbers from being stolen over 60 new data leak prevention rules were added to SecurityGateway to protect against transmission of a wider variety of sensitive data.
Saved Searches in MDaemon Webmail
Over the past year, we added new features to MDaemon Webmail to help users stay organized, including automatic creation of “All Unread” and All Flagged” saved searches. When you log into MDaemon Webmail, you’ll receive a pop-up message asking you if you’d like to create these saved searches. Simply confirm to add them to your folders list.
Expired Webmail Session Notifications
If you’ve been logged into MDaemon Webmail for a period of time, you may not have noticed your session has expired. Beginning with MDaemon 19, MDaemon Webmail will display (EXPIRED) on the browser tab to help notify users that they’ve been logged out without having to switch tabs.
New Mobile Theme for MDaemon Webmail
Most of us are using our phones more than we’re using our desktop to check email, and you shouldn’t have to sacrifice features for the convenience of anywhere access. To address these needs, MDaemon Webmail’s mobile theme has been redesigned with a more modern look, plus a variety of new features previously only found in desktop themes. New email management features include email templates, personalized categories, drag & drop email filters, an email signature editor with support for multiple signatures, deferred delivery, message snooze, message recall, and sorting options.
Calendar features for the new Mobile Webmail theme include importing and exporting in CSV or ICS (iCal) format, support for external calendars, private access links, simultaneous multi-calendar view, and much more.
Businesses with higher email usage environments will benefit from these new features for SecurityGateway.
64-Bit Version of SecurityGateway
This year, we added a 64-bit version of SecurityGateway. This allows 64-bit operating systems to take advantage of the extra processing power that’s achieved by allowing more operations to be performed at a time. The 64-bit version can handle a higher volume of active connections for improved performance.
External Database Support in SecurityGateway
External database support has been added to SecurityGateway, so you’re no longer limited to using the built-in Firebird database. When an external Firebird database is used, multiple items can access the database at the same time, which helps improve performance.
Support for Multiple SSL Certificates
In the past, when adding a new domain and host name to an existing MDaemon server, administrators had to remove and re-create the SSL certificate, or re-issue the third-party certificate. In 2019 we added support for Server Name Indication (SNI) to MDaemon. With SNI, each host name can have its own SSL certificate, which means you no longer have to delete and re-create existing certificates and share them among new domains/host names. Simply create the new SSL certificate & assign it to the new host name.
Centralized Management of Email Signatures
If your business allows users to create their own email signatures, you may have noticed there’s no consistency, with variations in text formatting, images, or overall layout of the signature. In MDaemon 19.5, we added support for centralized management of email signatures.
More Features Coming Soon!
This is by no means an exhaustive list of all new features. Our developers have devoted countless hours to making MDaemon the best email and collaboration product on the market, and 2020 is going to be even more exciting, so check back for new features and updates!
The news is out. There’s a new version of MDaemon Email Server, with new features and improvements to benefit both administrators and end-users alike!
New Features for Administrators
Centralized Management of Email Client Signatures
Most businesses follow certain custom branding practices in their email communications, but inevitably there will be those end users who have not updated their email signature to adhere to these branding practices, introducing inconsistencies in the company’s branding image. To help businesses maintain consistent branding and appearance of company email, MDaemon administrators can now configure default and per-domain email client signatures that are personalized for each user and pushed to supported email clients (MDaemon Webmail and MDaemon Connector for Outlook).
Both plain-text and HTML signatures are supported, and macros can be used (here’s a handy macro reference guide) to automatically populate various fields from the user’s account. You can even add images and links!
When using MDaemon Remote Administration, adding signatures is made even easier using the available editing and formatting tools. You can even add your company logo by simply dragging the image into the window.
Macro Detection in Email Attachments
Cybercriminals often attach Microsoft Office files containing malicious macros to their spam & phishing email messages. They then use social engineering to try to trick the user into opening the attachment (which may be disguised as an invoice, payment receipt or legal document) and enabling macros. From there, the macro goes right to work, unleashing malware that can take down your network, or ransomware that can take days to remove, costing your businesses thousands of dollars in lost revenue.
To help prevent these attachments from reaching users, MDaemon Antivirus has a new setting to detect macros in documents scanned by Cyren AV and flag them as infected for further review by the administrator.
New Features for End Users
New Mobile Theme for Webmail
These days, most people use their smartphones for just about everything, from banking or surfing the Web, to conducting business via email, so whether you’re using the largest Microsoft Surface tablet, or the smallest iPhone or Samsung Galaxy, you need access to your most important email and collaboration features at all times.
To help users on the go stay organized, the Mobile Theme for MDaemon Webmail has been redesigned with a more modern look, and includes a variety of new features previously only found in desktop themes. New email management features include email templates, personalized categories, drag & drop email filters, email signature editor with support for multiple signatures, deferred delivery, message snooze, message recall, and sorting options.
Calendar features for the new Mobile Webmail theme include importing and exporting in CSV or ICS (iCal) format, support for external calendars, private access links, simultaneous multi-calendar view, and much more.
But that’s not all…
These are just the major highlights. You can read the full list of improvements in the MDaemon Release Notes.
If you’re like me, you want an email client that’s easy to set up, easy to use, and easy on the eyes, and if it works well with MDaemon, then that’s a huge plus!
An email client that fits these criteria quite nicely is eM Client, a full-featured email client that supports email, contacts, calendars and tasks, and works on a variety of platforms and devices. Its touch-friendly design makes eM Client the ideal messaging and collaboration tool for smartphones and tablets.
eM Client is simple, elegant, customizable and easy to set up. Its built-in calendar works seamlessly with MDaemon’s free/busy server to help users avoid scheduling conflicts when planning meetings and events.
As our products have evolved over the years, with new features added regularly, older versions of our software are eventually no longer supported.
Effective July 30, 2019, technical support will be discontinued for the following product versions:
MDaemon – Versions 14.5.x and below
Security Gateway – Versions 4.5.x and below
Outlook Connector – Versions 4.5.x and below
SecurityPlus – Versions 5.0.x and below
For continued support, this is a great opportunity to renew your license and upgrade to most recent versions of our software to take advantage of the latest features! As a current user we offer an automatic 30% discount off the price of a new purchase!
Upgrade MDaemon today and get these exciting new features:
MDaemon Connector for Outlook (formerly Outlook Connector for MDaemon) has new features, too!
Outlook Connector has been re-branded as MDaemon Connector for Outlook, and, beginning with MDaemon 18, is now included with MDaemon as a licensed feature (via purchase of separate license).
Therefore, in the latest version of MDaemon, a separate download is not required on the MDaemon server. Simply enter your MDaemon Connector license key via Help | Register your MDaemon Products to activate MDaemon Connector for Outlook. Features introduced after version 4.5 include:
“Expired password” or “password change required” notification for end users
Administrator control over which Outlook add-ins are allowed or disabled
Junk Email folder / Blocked Senders support
S/MIME support for message signing and encryption
MDaemon Connector configuration reports for administrators, with Outlook send/receive schedules for all accounts.
Centrally-managed send/receive schedules
Nearing/over quota alerts for end users
New database management tools to help administrators maintain optimal performance
To ensure MDaemon and its plugins provide the most up-to-date security and best performance, we often provide maintenance updates to help our customers get the most out of their business email and collaboration server.
This week, we released version 19 of the MDaemon Email Server, with new features that benefit administrators and end users. The following is a summary of key improvements for email security and productivity. You can view the complete list of new features and updates in the MDaemon release notes.
New MDaemon Email Server Features for Administrators
One of the first things administrators will notice is that the behavior of the “Start MDaemon” Start menu shortcut has changed. When clicked, you’ll now be taken to MDaemon Remote Administration via your browser. If you’d like to launch the MDaemon Email Server console directly, you can use the “Open MDaemon Configuration Session” shortcut, as shown here:
Enhanced Integration with Third-Party Plugins
MDaemon’s XML-API has been expanded to include additional capabilities. Folders and their contents can be created, deleted, renamed, and moved using the API. Developers can use these expanded features to display or manipulate the content of user mailboxes.
“External Message” Warning
A new “External Sender” Content Filter condition has been added, along with a new “Add a warning to the top of the message” action. This allows MDaemon administrators to create a rule that will add a custom warning to the top of all email messages originating from external sources – providing extra protection against phishing attempts by alerting users to treat these messages with extra care.
Support for Separate SSL Certificates for Each Host/Domain
MDaemon supports TLS Server Name Indication (SNI). This allows domains and host names to have their own assigned SSL/TLS certificate, rather than having to share a single certificate.
New Authentication Failure & Frozen Account Reports
MDaemon’s Dynamic Screening feature includes the option to send authentication failure and frozen account reports to end users. When a given number of authentication failures has been reached, or when an account has been frozen, the user is notified so that corrective action can be taken.
New MDaemon Email Server Features for End Users
MDaemon Webmail – “All Unread” and “All Flagged” Saved Searches
When logging in for the first time, MDaemon Webmail users will receive a prompt asking if they would like to create an “All Unread” and “All Flagged” saved search for convenient, one-click access to unread or important email messages.
MDaemon Webmail – Expired Session Indicator
MDaemon Webmail will display (EXPIRED) on the browser tab when a user’s session has expired. This allows users who have multiple browser tabs open to be notified when they have been logged out of MDaemon Webmail without having to switch tabs.
Other MDaemon Email Server Improvements Include:
Autodiscover support has been expanded to accommodate a wider variety of connecting email clients (including eM Client, Thunderbird, Outlook, and others). The service can also now be configured to pass a custom host name to the connecting client on a per-service basis (for example: administrators can configure ActiveSync to connect to activesync.domain.com and IMAP to connect to imap.domain.com, etc.).
The option “Only send antivirus update notification on failure” is now enabled by default, and when updating to MDaemon 19, it will be enabled the first time MDaemon starts up.
When ActiveSync is disabled for a domain, administrators will receive a pop-up asking if they would like to revoke ActiveSync access for users of the selected domain. This makes it easier to revoke access and reduces the usage of ActiveSync licenses.
The STARTTLS White List now takes precedence over the STARTTLS Required List and the “SMTP server requires STARTTLS on MSA port” option.
New options have been added to Security | Spam Filter | Spam Honeypots and Security | Security Settings | Screening | SMTP Screen to enable/disable the Dynamic Screening notification when an IP is blocked.
These are the main highlights. For a complete list of new features & enhancements in the latest MDaemon Email Server, please see the MDaemon release notes. If you’re not currently using MDaemon and would like to learn more about how MDaemon can save your company time and money, click here to download your free trial!
In the early to mid nineties, our founder and CEO Arvel Hathcock recognized the need for a less expensive, easier to manage alternative to Microsoft Exchange Server for small-to-medium businesses. With solid programming skills and an entrepreneurial spirit, he created the MDaemon Email Server and launched Alt-N Technologies.
Through word of mouth among IT professionals and with the help of great channel partners, the popularity of MDaemon spread to customers across the globe. Over the years and in various geographies, the product name became more recognized than Alt-N Technologies. To better leverage the name recognition that had been built over the many years of MDaemon email server popularity, the company was renamed to MDaemon Technologies in January of 2018.
Helping the World Communicate
From the introduction of Webmail in 1997 and instant messaging in 2001, to support for third-party XMPP chat clients in 2016, MDaemon has helped improved communication for businesses in over 90 countries.
Focused on Security
Alongside these communication features came enhancements in security. IP Shielding, which is used to help prevent spoofing by blocking messages from unauthorized IP addresses, was introduced in 1996 before MDaemon even had version numbers (for some great historical information, check out the Ancient-History.txt file located inside the MDaemon/Docs directory). Relay control was added the following year, with many new security features added with each new release. In 2005, MDaemon became the first Windows-based email server to offer DKIM (Domainkeys Identified Mail) as a new tool in the fight against spoofing. And to address the growing need to protect confidential data and meet growing regulations in health care, finance, and other industries, email encryption with OpenPGP was added in 2015.
Sharing & Collaboration
MDaemon’s collaboration tools have evolved over the years as well. Instant messaging was added in 2001, followed by shared calendars and groupware in 2002 and 2003. Scheduling meetings with multiple attendees was made easier by the addition of free/busy in 2006.
As business communication needs evolve, so does MDaemon, with new features on the way for 2019. If you’d like to be among the first to benefit, follow us on twitter for the latest news & product updates.
Before the invention of email, mail that arrived in your physical mailbox often contained pamphlets, sales brochures, credit card offers, and product catalogs. Much of this waste was thrown away and ended up in a landfill somewhere. Today, the equivalent and often more annoying nuisance is spam. Spam comes in many forms, and has evolved from dubious product claims, miracle supplements, conspiracy theories, and offers of easy money to more malicious threats such as ransomware attacks and targeted spear-phishing.
While the amount of spam as a percentage of total email traffic has gone down recently, the severity of email-borne threats has increased.
So how can users protect themselves from becoming the next victim to these malicious threats? There are numerous spam fighting tools in MDaemon and other mail servers, but server-side tools are only half of the spam-fighting equation. The other half is user education. With this in mind, here are 10 things users can do to reduce the amount of spam they receive.
Unsubscribe – How often have you been asked by a store clerk for your email address or placed an order online? In either of these situations, chances are you may have ended up on a company’s mailing list. When you receive email from these companies, take the time to open the message and click on the Unsubscribe link. But first, make sure the email is in fact coming from a reputable company (Here’s how). If you’re not completely sure where the email came from, then report the message as spam instead of unsubscribing.
Create a secondary email account – While we’re on the topic of retailers having your email address, you might also consider having a second email address that’s used solely for the purpose of store records or placing orders. This allows you to keep solicitations from these vendors out of your primary inbox.
Keep your email address private – If your email address is visible on social networking sites like Facebook or Twitter, then it’s also visible to spammers. Spammers have tools that can easily detect visible email addresses and add them to their mailing lists. This is why it’s often recommended that, if you MUST use your email address on one of these sites, you mask it by changing its format. For example, type out “at” instead of using the “@” symbol. With the prevalence of Business Email Compromise (BEC) attacks, it’s even more important for executives to be mindful of posting their email address or other personal information, as scammers will use this information to send out well-crafted spear-phishing emails.
Don’t reply to ANY spam or unsolicited marketing messages – Most spam messages use forged sender (return-path) addresses, so replying to a spam message will almost never result in the spammer getting your message. Replying to legitimate marketing messages tells the sender that your email address is valid, and thus, they may continue to send you spam.
Never click on links – Often, when you click on a link in a spam email, it specifically identifies you to the spammer as having received the message. Not only can clicking links in spam messages identify you to the spammer; you can also end up getting infected with malware.
Block Images – Even if you don’t click any links, an image opening in your email can alert spammers to a valid address. Spammers often try to be stealthy by inserting images that are only one pixel wide. If your mail client is configured to automatically open images, spammers can be alerted that your email address is valid. We recommend configuring your email client to automatically block images to reduce spam. You can always choose to view images in specific emails if you are sure the sender and content are legitimate.
Make your email address unique – Spammers often use common names to try to guess email addresses. If your email address is unique, it makes it harder for spammers to guess your email address.
Don’t fall for scams – If you receive an anonymous email from someone who appears to be in dire need, who promises you large sums of money for your small up-front investment, you may be witnessing the familiar Nigerian email scam, or one of many other variants. What are the odds that someone you’ve never met, who’s in a desperate situation, would contact you for help? Don’t fall for this scam.
Never forward email from someone you don’t know – I often see email messages with some type of public service announcement, petition, or other bit of advice, and often, there’s a request to forward the message to your friends. Don’t fall for this, as it’s a prime opportunity for spammers to harvest email addresses.
Blocking junk email is not just the job of the mail server administrator. A well-informed email user can mean the difference between spam that is manageable and spam that is out of control. These ten tips will help you reduce spam, and help prevent you from becoming a victim to phishing or malware.
Let’s face it. We all make mistakes. At one time or another, most of us have gotten a little hasty with the Send button when composing an email, and sent it to the wrong Frank Thomas, accidentally CC’d the customer in an inter-office communication, or realized the email was probably not such a good idea in the first place. These examples can be quite embarrassing, but other mistakes can result in legal trouble for you or your company. For example, healthcare providers can violate HIPAA regulations by sending an email containing protected health information (PHI) to the wrong person. Penalties for these HIPAA violations can be steep, ranging from $50,000 to $1.5 million.
To avoid these situations, your email solution should have a feature that lets you delay delivery of a message. With MDaemon Webmail, message scheduling options are just a mouse click away.
“This is all great, but why would I want to delay delivery of an important email message?”
There are many reasons why one might want to defer delivery of an email message.
Delaying message delivery for an hour or even a few minutes gives you time to take a break from it and review it with a refreshed perspective – providing another opportunity to catch errors you might have missed before.
Some email conversations go back and forth too quickly, so you might respond before you have all the information or ask questions that are already answered in the next message. Deferred delivery allows you to slow the process down so you’re not having to play email tag.
Deferred delivery can help prevent you from sending an angry email response during heated discussions. Allowing yourself a little extra time to re-think your message or to cancel the message altogether can help prevent a great deal of workplace conflict.
For companies that operate globally, deferred delivery allows users to schedule messages for delivery during peak business hours in the recipient’s country, increasing the likelihood that it will be seen.
We demonstrate how to defer delivery of an email message in MDaemon Webmail in this week’s tutorial video.