Security Features
MDaemon's Security and Screening Features
MDaemon is equipped with an extensive suite of security features and controls. Click Security on MDaemon's menu bar to reach the following security features: Security Features
AntiVirus Settings- AntiVirus for MDaemon can help you stop email-borne computer viruses by providing the highest level of integrated protection available for MDaemon customers. It will catch, quarantine, repair, and/or remove any email message found to contain any virus.
Content Filter-a highly versatile Content Filtering system makes it possible for you to customize server behavior based on the content of incoming and outgoing email messages. You can insert and delete message headers, add footers to messages, remove attachments, route copies to other users, cause an instant message to be sent to someone, run other programs, and much more.
DNS Black Lists-allows you to specify several ORDB and MAPS RBL type hosts that will be checked each time someone tries to send a message to your server. If the connecting IP has been blacklisted by any one of these hosts, the message(s) will be refused or flagged.
Spam Filter-new spam filtering technology to heuristically examine email messages in order to compute a "score". This score is used to determine the likelihood of a message being spam. Based on that determination the server can then take certain actions such as refusing or flagging the message.
SSL & Certificates-MDaemon supports the Secure Sockets Layer (SSL) protocol for SMTP, POP, and IMAP, and for WorldClient's web server. SSL is the standard method for securing server/client Internet communications.
Address Suppression-lists addresses that are not allowed to send mail traffic through your server.
IP Screening-used to designate IP addresses from which you will allow or refuse connections to your server.
Host Screening-used to designate hosts (domain names) from which you will allow or refuse connections to your server.
IP Shielding-if a domain name specified in this list attempts to connect to your server, its IP address must match the one that you have assigned to it.
SMTP Authentication-used for setting several options that denote how MDaemon will behave when a user sending a message to MDaemon has or has not been authenticated first.
POP Before SMTP-the controls on tab are used to require each user to first access his or her mailbox before being allowed to send a message through MDaemon, thus authenticating that the user is a valid account holder and allowed to use the mail system.
Site Usage Policy-used for creating a Site Security Policy to be transmitted to sending servers at the beginning of every SMTP mail session. An example of a common site policy is, "This server does not relay."
Relay Settings-used to control what MDaemon will do when a message arrives at your mail server that is neither from nor to a local address.
Trusted Hosts-domain names and IP addresses that will be considered as exceptions to the relay rules listed on the Relay Settings tab.
Tarpitting-makes it possible for you to deliberately slow down a connection once a specified number of RCPT commands have been received from a message's sender. This is to discourage spammers from trying to use your server to send unrequested bulk email ("spam"). The assumption behind this technique is that if takes spammers an inordinately long period of time to send each message then that will discourage them from trying to use your server to do so again in the future.
Reverse Lookup-MDaemon can query DNS servers to check the validity of the domain names and addresses reported during incoming messages. Controls on this tab can be used to cause suspicious messages to be refused or a special header inserted into them. Reverse Lookup data will also be reported in the MDaemon logs.
Sender Policy Framework-All domains publish MX records to identify the machines that may receive mail for them, but this doesn't identify the locations allowed to send mail for them. Sender Policy Framework (SPF) is a means whereby domains can also publish "reverse MX" records to identify those locations authorized to send messages for them.
DomainKeys-DomainKeys is an email verification system that can be utilized to prevent spoofing. It can also be used to ensure the integrity of incoming messages, or ensure that the message hasn't been tampered with between the time it left the sender's mail server and arrived at yours. It accomplishes then by using an encrypted public/private key pairs system. Outgoing messages are signed using a private key and incoming messages have their signatures verified by testing them with the public key published on the sender's DNS server.
