Quarantine Management with WorldClient Private Email

WorldClient Private Email makes spam management easy by providing users with the email and collaboration features found in WorldClient, MDaemon’s webmail client, and the security and spam filtering features found in SecurityGateway. This tutorial video covers the following topics:

  • How to allow users to manage their own quarantines in SecurityGateway
  • Quarantine management via the Quarantine Summary Email, and how often this email is sent to users
  • When to whitelist or blacklist the sender, and when & how to release a message from quarantine
  • Quarantine management via the SecurityGateway interface
  • Feeding the Bayesian spam and non-spam database – to improve the spam filter’s accuracy

Spam doesn’t have to be an overwhelming nuisance. When these practices are followed, spam is kept under control so you can spend less time dealing with spam and more time focusing on your business.

If you are interested in our WorldClient Private Email hosted email service, click here for pricing and features, or click here to sign up!

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

New MDaemon Feature Helps Detect Spambots

Ever wonder why so much spam exists today? By some estimates, more than 100 billion spam messages are sent every day. This represents around 85 percent of global daily email traffic. Some of the most common types of spam messages include financial scams, phishing attempts, ransomware, and botnet malware. In this article, we focus primarily on botnets.

Spam is big business. The barriers to entry are low and the payoffs are high. If a spammer sends out 50,000 spam messages, but only a handful of users click on a link in one of these messages, the spammer’s efforts will likely have paid off.

A single spammer may not have the resources to send out a large-scale spam attack, however, a spammer’s job is made much easier by the use of botnets – networks of hundreds or even thousands of malware-infected computers (known as spambots) that can be remotely controlled over the internet.  Similar to legitimate cloud services such as Amazon’s AWS, a botnet-for-hire provides individuals with ample cloud-based resources to carry out large-scale spam campaigns with very little effort.

According to Spamhaus, the top five countries with the most spambots are India, Vietnam, China, Iran, and Brazil. As of May 23, 2016, India had close to 2 million spambots!

The botnet-for-hire industry is a growing industry that makes it easy for anyone to send out thousands of spam messages using the botnet as the attack vector.

In addition to sending out spam, botnets can be used to launch DDoS attacks by flooding a company with thousands of connections over a short period of time – in an effort to try to shut down a company’s network or to damage its reputation.

User education is likely the most important factor in preventing a computer from becoming a spambot. The following are a few guidelines that every email user should know by now.

  • Never open an email from an unknown source.
  • Never open an attachment from an unknown source.
  • Even if the sender appears to be someone you know, always verify – because spammers often forge the sender’s address.
  • Use anti-virus software on your local computer.
  • Learn how to recognize phishing
    • Messages that contain threats to shut your account down
    • Requests for personal information such as passwords or Social Security numbers
    • Words like “Urgent” – portraying a false sense of urgency
    • Forged email addresses
    • Poor writing or bad grammar
  • Don’t give your email address to sites you don’t trust.
  • Don’t post your email address to public websites or forums.
  • Understand that reputable businesses will never ask for personal information via email.

For more of these guidelines, see our blog posts – Email Safety Tips for End Users and Ransomware and Banking Trojans are Big Business.

Spambot Detection in MDaemon

The information provided above applies primarily to end users, but what actions can be taken by the mail server administrator to detect and prevent spambot activity? While MDaemon has many spam-fighting features, MDaemon 16 includes tools to detect spambot activity and block it from further communication with your server. This new feature is called Spambot Detection. Spambot Detection tracks the IP addresses that every return-path value (sender) uses over a period of time. If the same return-path is used by multiple IP addresses (more than can be expected from users switching between their computers and mobile devices) in a given timeframe, then it’s possible that this activity is being generated by a spambot. Of course, it’s also possible that this activity is completely legitimate. However, in some cases, tests have shown that this can be an effective tool at detecting a distributed spambot network as long as the same return-path is used in the spam messages. If a spambot is detected the connection is dropped and the return-path value is optionally blacklisted for a designated period of time.  You can also optionally blacklist all known spambot IPs for a designated period of time.

As with most MDaemon security features, various settings allow you to bypass Spambot Detection for mail from trusted sources. You can exempt specific IPs, senders, and recipients from Spambot Detection using the White list feature, and exempt connections from authenticated sessions or trusted IPs. Click on the Advanced buttons to view a list of return-paths or IPs that are currently blocked. If a return-path or IP is blocked by mistake, you can easily remove it from the list.

We demonstrate how to configure Spambot Detection in this tutorial video.

Spammers are always coming up with new ways to spam users. That’s why user education and a properly configured mail server are equally important in the war against spam.

Spambot Detection is one more tool in MDaemon’s arsenal of anti-spam and security features. When these features are enabled, MDaemon can help protect your users and your business from spam, phishing attempts, and malware. For more information on protecting your MDaemon server, check out our knowledge base article on recommended MDaemon security settings.

If you’re not yet an MDaemon user, and would like to take advantage of its robust security and anti-spam features, click here to download your free trial!

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

New MDaemon Tutorials Added to YouTube

If you haven’t seen our YouTube channel lately, you’re missing out on some valuable information that can be used to help you manage MDaemon and SecurityGateway. Recently, we’ve added several new MDaemon tutorial videos. Here are a few that might interest you.

MDaemon Graphical User Interface (GUI) Overview

In this video, we provide a tour of MDaemon’s graphical user interface. We show you where to find key security, administration, and account management settings, how to navigate your way through the mail queues, and how to find information in the mail routing, security and spam filter logs using the tabs across the bottom of the MDaemon interface.

MDaemon’s File Structure

One of the benefits of MDaemon that make it easy to troubleshoot and administer is its file structure. All key settings are stored in configuration files located in the MDaemon/App directory, and user email messages are stored in the Users directory. This flat-file structure makes MDaemon very easy to backup and restore using simple drag & drop.

How to Enable and Use Two-Factor Authentication in WorldClient

Two-factor authentication is a security feature found in WorldClient, MDaemon’s webmail client, which requires users to submit two forms of identifying data – a password, and a special code or token, before they are able to login. Two-factor authentication helps prevent accounts from being hijacked by someone who manages to guess the account’s password. A potential hacker would have to know the second authenticating factor in order to access the account.

Enabling Do Not Disturb to Establish Work/Life Balance for Employees

MDaemon’s Do-Not-Disturb feature allows administrators to set a time during which certain users are not allowed to check for or send new email messages. In an age where we’re all constantly connected via mobile devices, this helps foster better work-life balance for your users.

These are just a few of the tutorial videos on our YouTube channel. Visit our YouTube channel for other tutorials, product overview videos, webinars, and more. If you haven’t tried MDaemon yet, click here to download your free trial and see how easy MDaemon is to use!

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

MDaemon 16.0.2 Available – with “Remember Me” for Two-Factor Authentication

MDaemon 16.0.2 has been released. This update includes a “remember me” feature for two-factor authentication in WorldClient. With this feature enabled, users will not have to re-enter a verification code for a designated period of time.

Other new features and enhancements include:

  •  Global administrators can now set the Mail Archive path in Remote Administration.
  • The Remote Administration group editor now supports Do Not Disturb scheduling. This allows administrators to schedule a period of time during which email cannot be accessed for all accounts that have been assigned to a group.
  • Administrators can now sort the Active Sessions list in Remote Administration – for an improved view of server activity.
  • Global administrators can now disable two-factor authentication for selected users in Remote Administration.

These are just the highlights for MDaemon 16.0.2. For a complete list of new features and fixes, view the MDaemon release notes. If you’d like to update to MDaemon 16.0.2, you can download MDaemon here.

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

Manage Employee Overtime with New Email Feature

Companies around the world are faced with the need to manage email access after hours to reduce overtime pay and promote a stronger work/life balance for their employees. MDaemon makes this goal attainable using its Do Not Disturb feature. Do Not Disturb allows administrators to designate a time during which selected users are not allowed to check their email. During the Do Not Disturb period, accounts can still receive email on the mail server, but users cannot send or check for mail using SMTP, IMAP, POP, WorldClient or ActiveSync.

In MDaemon, you can access the Do Not Disturb feature via the Group Manager screen under the Accounts menu. Follow these steps to configure Do Not Disturb.

  1. Select Accounts.
  2. Select Groups & Templates.
  3. Select Group Manager.
  4. Select New Group or click on an existing group to select it.
    Click on New Group to create a user group in MDaemonEnter a Group Name and Description for your new group.Group name and description - MDaemon user group
  5. Click on Add or remove accounts from the selected group.
    Adding Accounts to a Group in MDaemon Messaging Server
  6. Check the box for each account you wish to add to this group, and then click OK.
    Adding Accounts to a Group in MDaemon Email Server
  7. Select the group name under the Group Manager list.
    Select the Group in the Group Manager List
  8. Check Enable Do Not Disturb.
    Do Not Disturb Checkbox - MDaemon Groups & Templates
  9. Click on Define Do Not Disturb Schedule to configure when you would like this feature to take effect.
    Defining a do-not-disturb schedule for selected accounts in MDaemon
  10. Select your desired Do-Not-Disturb schedule, including dates, times, and days of the week, and then click OK.
    Do not Disturb schedule
  11. Click OK to close the Groups & Templates window.

Once these settings are enabled, users who try to access or send email during Do Not Disturb hours will be denied access.

The following video demonstrates how to configure Do Not Disturb.

Do Not Disturb gives administrators and management teams greater control over who has after-hours access to the email system. This feature was added in MDaemon 15.5. If you’re using an older version of MDaemon and would like to upgrade, then visit our Downloads page to download the latest version of MDaemon.

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

Archive Your Email and Save Money!

Alt-N has been working closely with Mailstore to make email archiving, management and compliance easy to use with your MDaemon server. In fact, MailStore is the product we use here at Alt-N! mailstore-button-distributor-approved

The software works seamlessly with MDaemon to create 1:1 copies of all emails in a central email archive to ensure the security and availability of any amount of data for years to come.

MailStore advantages include:

  • Legal safeguard for email compliance
  • Fast full-text searching of emails and attachments
  • Reducing server workload
  • Saving up to 70% of storage space

And now you have an opportunity to save up to 50% with these promotions*:

– Save 20% on a NEW MailStore purchase, or
– Save 50% when you replace a competitor’s product with MailStore

For the 20% discount, use coupon MS20NEW at checkout at altn.com. For the 50% discount, contact an Alt-N representative.

To learn more and check pricing, please visit the Mailstore page.

IMPORTANT NOTE: This promotion is for Alt-N customers and resellers who work directly with Alt-N. MailStore uses other Alt-N Distribution partners in various countries for sales and you should check your country for specific sales by visiting the MailStore partner page

Be sure to take advantage of these offers today!

* Promotions cannot be combined and you must meet the 50% upgrade offer requirements. 20% offer expires March 31, 2016.

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

Access your Outlook Contacts from Anywhere by Importing them into WorldClient

If you’re moving to MDaemon from another email platform, or if you want to consolidate your local address books into one centrally-located database for easy access from anywhere, then you’ll want to import your contacts using WorldClient.

When contacts are imported into WorldClient, they are stored in a folder on the MDaemon server and accessible from your ActiveSync-connected mobile device (or Outlook 2013 & up connected via ActiveSync), Outlook via Outlook Connector, and WorldClient – MDaemon’s webmail client.

This knowledge base article lists the CSV fields that can be used when importing contacts into WorldClient.

In this brief tutorial video, I show you how to export your contacts from Outlook to a CSV file, and how to import that CSV file into WorldClient.

If you have questions, send me an email at training@altn.com.

Have a great weekend!

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

Thwart Hackers with Strong Password Policies

For spammers, the barriers to entry are very low and the potential payoffs are very high relative to the small amounts of effort required to send out lots of spam. Spammers typically look for the “low hanging fruit” of an email system, such as mail servers that are not configured to prevent relaying, or accounts with weak passwords. If a hacker manages to guess an account’s password, he can use that account to send out large amounts of unsolicited spam email messages. This can result in your server winding up on a blacklist. Additionally, if large amounts of spam are sent out before the issue is corrected, your business can suffer lost trust and a reduction in revenue.

MDaemon’s Account Hijack Detection feature can be used to disable the account once a specified number of messages have been sent from an authenticated session within a given period of time. But it would be better to not even let a hacker get that far. Having strong passwords that are difficult to guess would help prevent an account from being hijacked in the first place.

Today, we focus on the issue of weak passwords and how to thwart hackers by implementing strong password policies. These settings are located in MDaemon under the Accounts | Account Settings configuration screen. In today’s video tutorial, we demonstrate how to require strong passwords, how to force accounts with a weak password to change their password, and how to send a Weak Passwords report to a designated email address.

Email is one of the most valuable intellectual property assets a company can have. Protect your email by enacting strong security and password policies & keep the hackers out.

Click here to learn more about MDaemon and why many small-to-medium businesses have migrated to it from Microsoft Exchange Server, or click here to download your free trial!

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

For Security & Privacy – Easy Email & Attachment Encryption with Virtru

Recently, I created a video and blog post about Virtru Email Encryption for MDaemon, to demonstrate its features, benefits, and ease of use. Following along with its ease of use, I’ve created the following animation to show you just how easy Virtru is to use. Simply enable Virtru support in WorldClient (MDaemon’s webmail client), enable the Virtru features by clicking on the small “V” button within the email compose window, and then click on “Send Encrypted.” It really is that simple!

Virtru Email and Attachment Encryption
It’s easy to encrypt email and attachments using Virtru

For a more thorough overview of Virtru’s features, please see this blog post, or click here to visit our main Virtru page.

Virtru (email and attachment encryption) is included with the MDaemon Messaging Server. Virtru Pro features include Message Revoke, Disable Forwarding, Set Message Expiration, and automatic encryption. Click here if you’d like to purchase Virtru Pro.

Want to learn more about the encryption features offered by MDaemon? Then click here to learn more!

Protect your business from unauthorized access to your important and confidential email messages. Download your free trial of MDaemon today!

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •  

MDaemon 15.5.3 is Now Available

MDaemon mail server software update available

MDaemon 15.5.3 has been released. With this latest release, we’ve added support for one of the most popularly-requested features – the ability for the content filter to check for restricted files inside of RAR and ZIP attachments.

Click here to read the complete release notes.

Click here to download the latest MDaemon.

If you are upgrading from an older version of MDaemon, here are some helpful tips to ensure that your upgrade goes smoothly.

If you need assistance, please feel free to leave us a comment, or click here to contact our support staff.

Spread the love
  •  
  •  
  •  
  •  
  •  
  •  
  •