1144

Alt-N Recommended Security, Dynamic Screening, Spam Filter, Anti-Virus, and Outbreak Protection Settings

Security configurations may very from server to server and certain servers may need to be adjusted accordingly.  The following are general recommendations for utilizing MDaemon's security and spam features as well as the Anti-Virus and Outbreak Protection features provided by SecurityPlus.

The following screenshots where taken from MDaemon version 17.5.  Prior versions may not contain all of the features below.

SecurityPlus must be installed and a valid SecurityPlus key must be activated in order to change Anti-Virus and Outbreak Protection settings.

Please direct any questions to our technical support team for more information.  Click here to contact us

Recommended Security Settings
  1. Navigate to the MDaemon GUI
  2. Select Security
  3. Select Security Settings
  • Security Settings
    • Relay Control


    • Reverse Lookups


    • POP Before SMTP


    • Trusted Hosts
      Hosts added to this list will bypass all Security Settings.

    • Trusted IPs
      IP Addresses added to this list will bypass all Security Settings.

  • Sender Authentication
  • Screening
    • Sender Blacklist


    • Recipient Blacklist
      Local domains and/or addresses should not normally exist on this list

    • IP Screen


    • Host Screen
      Recommended values have been pulled from our recommended host screen article.


    • SMTP Screen


    • Hijack Detection


    • Spambot Detection


    • Location Screening
      (Optional) Use this feature to disable SMTP/IMAP/POP connections from unauthorized regions of the world.

  • SSL & TLS
    • MDaemon
      A third party or self-signed certificate must exist in the server's certificate store to use SSL, STARTTLS, and STLS


    • WorldClient (web mail)
      You may use the same certificate for WorldClient SSL connections.
      HTTPS only and HTTP redirected to HTTPS will disable non-SSL connections from occurring for web mail.


    • Remote Administration
      You may use the same certificate for WorldClient and/or MDaemon SSL connections.
      HTTPS only and HTTP redirected to HTTPS will disable non-SSL connections from occurring for remote administration sessions.


    • STARTTLS White List
      Hosts/IPs added to this list will be exempt from using STARTTLS during SMTP sessions.

    • STARTTLS Required List
      Hosts/IPs added to this list will be required to use STARTTLS.

  • Other
    • Backscatter Protection


    • Tarpitting


    • Greylisting


    • LAN Domains
      Domains listed here are considered by MDaemon to be part of the local area network (LAN)..

    • LAN IPs
      IPs listed here will be considered by MDaemon to be part of the local area network (LAN).

    • Site Policy
      Text transmitted during the initial connection of each SMTP session.
      Policies should be limited to 15 lines with 75 characters per line.


Recommended Dynamic Screening Settings

The Dynamic Screening menu prior to MDaemon version 17.5 can be found by following the steps below.
Please note that many of the below options are not available and should be followed as closely as possible.

  1. Select Security
  2. Select Security Settings
  3. Expand Screening
  4. Select Dynamic Screening

To open Dynamic Screening in MDaemon version 17.5 and above...

  1. Select Security
  2. Select Dynamic Screening...
  • Options/Customize


  • Authentication Failure Tracking


  • Dynamic Blacklist
    IP addresses can be added here permanently or expire after an desired date.  CIDR notation and wildcards(*) are accepted here.

  • Dynamic Whitelist
    Exempt IP addresses or ranges.  Default settings are pictured below.


  • Protocols


  • Notifications


Recommended Anti-Virus Settings

  • SecurityPlus must be installed and activated to access this menu.
  1. Navigate to the MDaemon GUI
  2. Select Security 
  3. Select AntiVirus
  • Content Filter
    • AntiVirus

Recommended Outbreak Protection Settings

  • SecurityPlus must be installed and activated to access this menu.
  1. Navigate to the MDaemon GUI
  2. Select Security
  3. Select Outbreak Protection

    • Outbreak Protection

Recommended Spam Filter Settings

  1. Navigate to the MDaemon GUI
  2. Select Security
  3. Select Spam Filter
  • Spam Filter
    • Spam Filter


    • Bayesian Classification


    • Bayesian Auto-learning


    • Spam Daemon (MDSpamD)
      No changes to be made here unless instructed to from technical support.

    • White List (Automatic)


    • White List (no filtering)
      Local domains/addresses should not be on this list

    • White List (by recipient)
      Local domains/addresses should not be on this list

    • White List (by sender)
      Local domains/addresses should not be on this list

    • Black List (by sender)
      Local domains/addresses should not be on this list

    • Updates


    • Reporting


    • Settings


  • DNS-BL
    • Hosts


    • White List
      Local domains/addresses should not be on this list

    • Settings