Introducing Security Gateway 7

Like all Security Gateway releases, the developers at MDaemon Technologies continue to add new customer requested features and enhancements to meet the latest email security and compliance needs for businesses, whether they're using cloud hosted or on-premise email servers. Here is a quick overview of just some of the latest features end users and IT administrators will find helpful. A more comprehensive list of all new features and enhancements can be viewed in the Security Gateway for Email Servers Release Notes.


Security Gateway 7

Clustering Support

SecurityGateway for Email Servers - Data Leak Prevention

Clustering allows multiple active Security Gateway servers to share a single database, and provides improved failover & redundancy to help protect businesses from unexpected service interruptions.

Two-factor Authentication

SecurityGateway for Email Servers - Two-factor Authentication

For added protection against unauthorized login, Security Gateway supports two-factor authentication. Administrators can enable two-factor authentication globally or per-domain.

Check for Compromised Passwords

Security Gateway for Email Servers - Check for Compromised Passwords

Security Gateway can check a user’s password against a compromised password list from a third-party service, and then prevent users from using passwords found on the list. If a user’s password is present on the list it does not mean the account has been hacked. It means that someone somewhere has used the password before and it has appeared in a data breach. Published passwords can be used by hackers in dictionary attacks.


RequireTLS for Improved Email Security

Security Gateway for Email Servers - RequireTLS ensures an encrypted connection for extra email security
RequireTLS allows administrators to flag messages that must be sent using an encrypted (TLS) connection. Messages that cannot be sent via a TLS-encrypted connection will be bounced back to the sender rather than being sent without TLS. Like Strict Transport Security (STS), RequireTLS also protects against man-in-the-middle and encryption downgrade attacks.


Strict Transport Security (MTA-STS)

Security Gateway for Email Servers - MTA STS - Strict Transport Security for Secure Email Communication
MTA Strict Transport Security (MTA-STS) is a new internet standard that improves email security by requiring email to be sent to an authenticated server using good encryption between all connections through which the message passes. This helps prevent unauthorized message tampering while ensuring privacy and data integrity.


SMTP TLS Reporting

Security Gateway for Email Servers - TLS Reporting
Misconfigured TLS settings can lead to undelivered email messages or delivery over unencrypted connections. To help alert administrators of potential issues, SMTP TLS Reporting can be used to alert administrators of TLS connectivity problems experienced by mail servers, gateways, or other applications used to send mail. When this feature is enabled, each day Security Gateway will send reports to all STS-enabled domains that it has sent (or attempted to send) mail to that day. Administrators can then use this information to take corrective action to secure their email communications.


Security Gateway 6.5

Macro Detection in Office Documents

SecurityGateway for Email Servers - Macro Detection in Office Documents

Cybercriminals often use macros in email attachments to spread malware. In Security Gateway 6.5, the Cyren Antivirus engine can be configured to detect macros in Microsoft Office documents and flag them as infected.

External Database Support

Security Gateway can be configured to use an external Firebird database. This will allow multiple items to access the database at the same time, which can help improve performance.

Email Archive Journaling Reports

SecurityGateway for Email Servers - Email Archive Journaling Reports

A new option to create email journal reports has been added to the archiving feature. When this setting is enabled, journal reports containing information from the original message (sender & recipient, message subject, etc.) will be created for the messages specified.

Security Gateway 6

Email Archiving

SecurityGateway for Email Servers - Email Archiving

Security Gateway's email archiving features provide a fully indexed and searchable repository of all messages sent and received - for both administrators and end users, with advanced search and options for downloading archived messages or restoring them to the mailbox.

Additional Data Leak Prevention Rules

SecurityGateway for Email Servers - Data Leak Prevention

Over 60 new data leak prevention rules have been added for protection against transmission of a wider variety of sensitive data such as passport numbers, driver's license numbers, bank account numbers, and much more.

64-Bit Version

A 64-bit version of Security Gateway is available (for 64-bit operating systems). The 64-bit version can handle a higher volume of active connections for improved performance.