Employing VisNetic MailServer Security Features

Similar documents
Service User Manual. Outlook By SYSCOM (USA) May 2nd, Version 1.0. Outlook 2013 Ver.1.0

Service User Manual. Outlook By SYSCOM (USA) May 2, Version 2.0. Outlook 2007 Ver. 2.0

FortiMail Gateway SMTP Authentication Technical Note

Set Up with Microsoft Outlook 2013 using POP3

Step 2 - Deploy Advanced Security for Exchange Server

You should not have any other MX records for your domain name (subdomain MX records are OK).

You can find more information about the service at

Simple and Powerful Security for PCI DSS

GFI MailSecurity 2011 for Exchange/SMTP. Administration & Configuration Manual

Small Office Security 2. Mail Anti-Virus

How to Configure ATP in the Firewall

Internet Security Mail Anti-Virus

Note: CONTENTS. 1. Outlook Express (IMAP) 2. Microsoft Outlook (IMAP) 3. Eudora (IMAP) 4. Thunderbird (IMAP) 5. Outlook Express (POP)

Objectives CINS/F1-01

Fortinet.Certdumps.FCESP.v by.Zocki.81q. Exam Code: FCESP. Exam Name: Fortinet Certified Security Professional

KASPERSKY LAB. Kaspersky Administration Kit version 6.0. Reference Book

SETUP FOR OUTLOOK (Updated October, 2018)

Firewalls 1. Firewalls. Alexander Khodenko

Using Centralized Security Reporting

PCI DSS Compliance. White Paper Parallels Remote Application Server

WHITE PAPER. Authentication and Encryption Design

Comodo Dome Antispam Software Version 6.0

Comparison of Firewall, Intrusion Prevention and Antivirus Technologies

CSC Network Security

DEERFIELD.COM. VisNetic MailFlow Product Documentation. VisNetic MailFlow Admin Guide

90% 191 Security Best Practices. Blades. 52 Regulatory Requirements. Compliance Report PCI DSS 2.0. related to this regulation

SIMATIC. Process Control System PCS 7 Symantec Endpoint Protection 11.0 Configuration. Using virus scanners 1. Configuration 2. Commissioning Manual

Protection Service with Continuity

Office 365 Integration Guide Software Version 6.7

WorldSecure/Mail Getting Started Guide

WEBSENSE PERSONAL MANAGER

IceWarp Unified Communications. AntiVirus Reference. Version 10.4

Franzes Francisco Manila IBM Domino Server Crash and Messaging

Appliance Installation Guide

Workshare Protect Server 3.8. Solutions Guide

Future-ready security for small and mid-size enterprises

Step-by-Step Configuration

Training UNIFIED SECURITY. Signature based packet analysis

CERT-In. Indian Computer Emergency Response Team ANTI VIRUS POLICY & BEST PRACTICES

Proxy server is a server (a computer system or an application program) that acts as an intermediary between for requests from clients seeking

VisNetic MailPermit. Enterprise Anti-spam Software. VisNetic MailPermit

Proofpoint Essentials: Part of the Proofpoint Family... 5 Proofpoint Essentials Overview Best Practices... 10

Firewalls, Tunnels, and Network Intrusion Detection

3. In the upper left hand corner, click the Barracuda logo ( ) then click Settings 4. Select the check box for SPoE as default.

Step-by-Step Configuration

Symantec ST Symantec Messaging Gateway Download Full Version :


M1000, M2000, M3000. eprism Installation Guide


Service User Manual. Outlook By SYSCOM (USA) May 7, Version 2.0. Outlook 2003 Ver. 2.0

Kaspersky PURE 2.0. Mail Anti-Virus: security levels

Troubleshooting IMAP Clients and ViewMail for Outlook

SteelGate Overview. Manage perimeter security and network traffic to ensure operational efficiency, and optimal Quality of Service (QoS)

IMPLEMENTATION POLICY AND PROCEDURES FOR SECURING NETWORKED DEVICES

MDaemon Vs. Kerio Connect

MDaemon Vs. Microsoft Exchange Server 2016 Standard

MDaemon Vs. Zimbra Network Edition Professional

ESMTP Support for Cisco IOS Firewall

MDaemon Vs. Kerio Connect

Synology MailPlus Server Administrator's Guide. Based on MailPlus Server 1.4.0

MDaemon Vs. SmarterMail Enterprise Edition

How to Configure ATP in the HTTP Proxy

PineApp Mail Secure SOLUTION OVERVIEW. David Feldman, CEO

MDaemon Vs. Microsoft Exchange Server 2016 Standard

Office 365 Standalone Security

Comodo Dome Antispam Software Version 6.0

Security+ Guide to Network Security Fundamentals, Third Edition. Chapter 3 Protecting Systems

MDaemon Vs. SmarterMail Enterprise Edition

IBM Managed Security Services for Security

Distributed Systems. Lecture 14: Security. Distributed Systems 1

User Guide. This user guide explains how to use and update Max Secure Anti Virus Enterprise Client.

Preface Introduction to Proofpoint Essentials... 6

Dataprise Managed Anti-Spam Console

IBM Managed Security Services (Cloud Computing) hosted and Web security - express managed security

Distributed Systems. Lecture 14: Security. 5 March,

WORKSHARE PROTECT SERVER 3.6 SOLUTIONS GUIDE

Managing SonicWall Gateway Anti Virus Service

AudBase Security Document Page 0. Maintaining Data Security and Integrity

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

Protegent Total Security Solution USER GUIDE Unistal Systems Pvt. Ltd. All rights Reserved Page 1

Installation Manual. and User Guide

Trend Micro Incorporated reserves the right to make changes to this document and to the products described herein without notice.

Barracuda Security Service User Guide

Deployment Guides. Help Documentation

A Comprehensive CyberSecurity Policy

Trend Micro Incorporated reserves the right to make changes to this document and to the products described herein without notice.

FRISK Software International F-Prot AVES Managed Security Service

All existing accounts will be listed. 2. Click Add and select Mail to add a new account (see Figure 2). Figure 1. Figure 2

Comodo Antispam Gateway Software Version 2.1

IBM SmartCloud Notes Security

MESSAGING SECURITY GATEWAY. Solution overview

Lotus Protector for Mail Security

INSIDE. Symantec AntiVirus for Microsoft Internet Security and Acceleration (ISA) Server. Enhanced virus protection for Web and SMTP traffic

SIMATIC. Process Control System PCS 7 V7.0 SP1 Security Information Note: Setting up antivirus software. Preface. Using virus scanners 2

Google Cloud Platform: Customer Responsibility Matrix. December 2018

McAfee Gateway Appliance Patch 7.5.3

ESET Mobile Security for Windows Mobile. Installation Manual and User Guide - Public Beta

BEST PRACTICES FOR PERSONAL Security

Fireware-Essentials. Number: Fireware Essentials Passing Score: 800 Time Limit: 120 min File Version: 7.

User s Guide. SingNet Desktop Security Copyright 2010 F-Secure Corporation. All rights reserved.

Transcription:

Employing VisNetic MailServer Security Features VisNetic MailServer p o w e r f u l email server

VisNetic MailServer Security Features VisNetic MailServer includes a sophisticated and broad array of security features. A step-by-step guide to configuration of each follows. Prevent Open Relaying An Open Relay server allows anyone, anywhere to connect and send mail through it. If your mail server is used as an open relay, your IP address may be black listed by Spam-blocking databases and by other mail servers on the Internet, reducing your ability to communicate via email with your customers, vendors and partners. Additionally, your bandwidth and resources are used to send the messages and that drain may negatively impact critical business operations. POP Before SMTP VisNetic MailServer s POP before SMTP feature prevents open relaying by ensuring that all mail sent originates from a valid user account. When this feature is activated, VisNetic MailServer will require each user to check their mail or issue their POP login before sending email. The server then records the user s IP address and, for a designated period of time, allows that IP address to send mail. To activate this feature, select the Delivery tab in the VisNetic MailServer configuration window. Enable POP before SMTP and specify the time interval. This is the amount of time (in minutes) VMS will allow a user to send mail before they are required to authenticate again. 2

SMTP Auth VisNetic MailServer can be configured to allow external users or applications that do not have accounts on the server to send email. This is useful for individuals using email clients (e.g. IMAP) that do not POP before retrieving email from the server. The SMTP Authorization option, enabled by default, allows these users to send mail after proper authentication. For proper authentication, the email clients of each external user must be configured to authenticate during SMTP sessions. If you choose to disable the SMTP Auth feature, depress the Security tab and select Disable SMTP AUTH. Avoid Account Hijacking Account hijacking occurs when an unauthorized third party uses a valid user s login to send email through your server. This is possible when a login and password is compromised. VisNetic MailServer s Password Policy option is designed to reduce the risk of unauthorized access to login and password information. The Password Policy option will automatically create random character passwords for user accounts. These passwords, by definition, are more difficult to hack. To utilize this option, select the colon button in the user field, with the Accounts tab. Specify password length 8 to 15 characters is the standard recommendation and number of numeric characters to be included in the password. Depress the Generate button and select Use Password. 3

Protect against Email-bourne Viruses Integrated Antivirus VisNetic MailServer includes support for integrated antivirus protection. The VisNetic AntiVirus Plug-in for MailServer resides on the email server and protects your entire network from email-bourne viruses. It features a powerful, multi-threaded scanning engine and SMTP-based virus update notifications. The VisNetic AntiVirus Plug-in scans all inbound and outbound email traffic for viruses. Once identified and detained, infected email can be deleted, quarantined or forwarded to the administrator for further action. The plug-in is supported by Kaspersky s continually updated virus signature list and is designed to automatically download only the necessary update information in a small download. Consequently, VisNetic AntiVirus is able to update quickly, with minimum bandwidth requirements. Once the VisNetic AntiVirus Plug-in is installed, you must enable it from the Security tab in the VisNetic MailServer configuration window. Simply select the Use Integrated AntiVirus field. To specify scanning criteria for domains, user accounts and messages, depress Integrated AntiVirus Mode. A green light on the Security tab in the AntiVirus filed indicates VisNetic AntiVirus is running and protecting your system from email-bourne viruses. 4

Learn more about the VisNetic AntiVirus Plug-in at http://www.deerfield.com/ products/visnetic_mailserver/antivirus/. Learn more about email-bourne viruses at http://www.viruslibrary.com. Protect against DoS attacks Denial of service (DoS) attacks can occur when one or more third parties send large amounts of otherwise legitimate requests to your mail server, swamping the server process. The goal of this type of attack is to prevent other users from accessing the service by forcing the server to fulfill an excessive number of requests. To protect against DoS attacks, VisNetic MailServer administrators can set the maximum number of allowed connections for a service. If your SMTP service is being DoS d, it will only accept the number of connections set in this dialog and will then return a message to the sending server that the service is not available. This will prevent further connections from being accepted until the number of connections decreases to below the threshold. This will allow the service to continue to operate (it won t crash), until the attack subsides. 5

Additionally, VisNetic MailServer features a Service Watchdog that will check the SMTP and/or POP3/IMAP services periodically. In the event the monitored service is stopped, the Watchdog will attempt to restart it. This feature can be enabled under the Security tab. Secure Connections VisNetic MailServer supports Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. Using these protocols, transmitted data is rendered indecipherable. Applied to email, these protocols work in the following manner. Messages sent between two or more mail servers, or between a mail server and a mail client using SSL/TLS, acknowledge use of the protocol and negotiate or decide upon an encryption method. Messages to be sent are then encrypted and sent over the Internet in the same manner as standard email messages. Upon receipt, the messages are decrypted at the server level. VisNetic MailServer allows direct SSL/TLS connections using POP3, SMTP, IMAP4 or LDAP protocols between 2 or more email servers. TLS/SSL support is enabled by default upon installation. Secure connections are initiated automatically when messages are sent to or received from an email server that supports these same protocols. If the email server that is being connected to does not support SSL or TLS, messages will be sent or received directly through the non-secure POP3 or SMTP protocols. This security check is transparent and will not interrupt the flow of email traffic. This option is located under the Delivery tab within the configuration window. 6

Filter Hazardous Attachments VisNetic MailServer s mature content filtering capabilities allow administrators to block specific types of email attachments (e.g..exe,.vbs), protecting your network and workstations from files potentially designed to alter computer settings or open ports to unauthorized traffic. Enable VisNetic MailServer s Content Filter by placing a check mark in the Content Filter field within the Security tab in the VMS configuration window. To create a filter by attachment type, depress the Content Filter button. In the following example, the filter is set up to strip.exe and.vbs attachments from email before delivery. Begin by selecting the Add button. In the Conditions field, select Strip Attachment where attachment name matches some word. In the Action field, select Reject/Accept/Delete message. In the Description field, select Some Words (highlighted) and specify the following string:.exe;.vbs. Depress OK. Also in the Description field, select Reject and change it to Accept the message. Depress OK. 7

Additional Security Options Protecting User Account Information Administrators can minimize access to user account information by activating the Deny VRFY and Deny Telnet features in VisNetic MailServer. Both commands may be utilized by third parties to harvest email addresses. When the Deny VRFY feature is enabled, VisNetic MailServer will return a not supported error to VRFY commands issued by a remote server. When the Deny Telnet feature is activated, a third party will be able to establish a connection using telnet, but VisNetic MailServer will not accept any commands once the session is established. Protecting Server Information Additionally, administrators can limit the amount of information about the server contained in email transmissions using VisNetic MailServer s option to hide the IP address from each message s Received: MIME header. Guarding Web Access Organizations may also choose to deny web access to the mail server, locking everyone out. Administrators can disable web access but still modify server configuration via the remote console. Alternatively, organizations that wish to allow web access (web mail, web administration) can deploy VisNetic ActiveDefense, an intrusion detection solution designed to monitor ports left open to this access for malicious activity. 8

Additional Resources Setup Guides: Knowledge Base: FAQ: Release Notes: http://www.deerfi eld.com/support/visnetic_mailserver/setup/ http://www.deerfi eld.com/support/visnetic_mailserver/kb/ http://www.deerfi eld.com/support/visnetic_mailserver/faq/ http://www.deerfi eld.com/support/visnetic_mailserver/releasenotes/ Free Support via Forum: http://webboard.deerfi eld.com/login Contact Deerfi eld Communications, Inc. P.O. Box 851 Gaylord, MI 49735 USA Telephone 989.732.8856 Fax 989.731.9299 www.deerfi eld.com sales@deerfi eld.com feedback@deerfi eld.com 9

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback