The following information provides a quick overview of new features end users and IT administrators will find useful. A more comprehensive list of fixes and new features can be viewed in the MDaemon Release Notes.
New Features for Administrators
Improved Email Security by Checking for Compromised Passwords
MDaemon can check a user’s password against a compromised password list from a third-party service, and then prevent users from using passwords found on the list. If a user’s password is present on the list it does not mean the account has been hacked. It means that the password has appeared in a data breach at some point. Published passwords may be used by hackers in dictionary attacks.
Improved Email Security using MTA Strict Transport Security (MTA-STS)
MTA Strict Transport Security (MTA-STS) is a new internet standard that improves email security by requiring email to be sent to an authenticated server using good encryption between all connections through which the message passes. This helps prevent unauthorized message tampering while ensuring privacy and data integrity.
Improved Email Security using Require TLS
RequireTLS allows administrators to flag messages that must be sent using an encrypted (TLS) connection. Messages that cannot be sent via a TLS-encrypted connection will be bounced back to the sender rather than being sent without TLS. Like Strict Transport Security (STS), RequireTLS also protects against man-in-the-middle and encryption downgrade attacks.
Improved Email Security using Authentication when Forwarding/Routing Mail
When forwarding, routing or collecting (dequeuing) mail, administrators can specify authentication settings for the host to which MDaemon is connecting. These settings can be applied to “Unknown Mail” processing, mailing list routing settings, forwarding or dequeuing settings for gateways, and forwarding settings for individual accounts.
Improved Email Security with Enhanced Account Hijack Detection System
Account Hijack Detection has been improved. In addition to tracking the number
of messages sent from an authenticated session in a given time frame and
disabling the account when the limit has been reached, MDaemon can now track
the number of times an account tries to send an email to an invalid recipient.
If an account tries to send email to too many invalid recipients in a given
time frame, MDaemon can freeze the account and then notify the administrator.
Since most spam messages sent from compromised accounts tend to include invalid
recipient addresses, this feature can help protect compromised accounts against
Improved Email Security with Protection from Unauthorized Authentication
A new option was added to MDaemon’s SMTP Authentication settings that disables authentication on the SMTP ports (25 and 465). This is useful in environments where all legitimate accounts are using the MSA port (587) or another port to submit authenticated mail. The assumption is that any attempt to authenticate on the standard SMTP ports must be from an attacker. Any client/IP that attempts to authenticate over the standard SMTP ports can optionally be added to Dynamic Screening, where it will be blocked from future connection attempts for a given period of time.
Improved Email Header Display for Easier Identification of Phishing & Spoofing
To help users identify potential phishing messages, MDaemon’s “From Header Screening” settings include an option that will change any email address found in the display name of an incoming message to match the actual email address found in the message’s From header.
Improved Email Security Using IP-based Encryption
MDaemon can encrypt messages based on the receiving IP address. This is useful when you want to ensure that all messages sent to specific partners, suppliers, affiliates, etc. are encrypted.
Improved Domain-wide Encryption
MDaemon now supports encrypting messages between domains using a single encryption key for all users. With this capability, it is no longer necessary to create individual encryption keys for every account.
Clustering for Improved Protection Against System Interruptions
MDaemon’s new clustering service enables administrators to set up multiple MDaemon servers in an Active/Active cluster. MDaemon synchronizes all configurations between servers, allowing multiple servers to service user accounts at the same time.
Note: Third party tools are required for routing network traffic and a shared storage location must be used for public folders and user mailboxes.
Improved Troubleshooting with Authentication Failure Log
The new Authentication Failure logging screen and corresponding log file allows administrators to track authentication failures for SMTP, IMAP and POP. The information includes the Protocol used, the Session ID so you can search other logs, the IP address of the offender, the raw Logon value that was used (sometimes this is an alias), the Account that matches the logon (or ‘none’ if no account matches), and a Notes field which may contain additional data when the attempt was made over SMTP.
Enhanced Mailing List Abilities using Macros
Macros are now supported in mailing list messages, allowing the message body to be personalized with the mailing list’s name or domain, or the full name or email address of the list member (if available).
Improved Email Delivery Performance with Deferred Message Queue
To help prevent message delivery delays caused by messages accumulating in the Inbound queue, MDaemon now has a dedicated queue for deferred messages. Messages that are placed in the Deferred queue will have the date they are scheduled to leave the queue encoded in their file names.
Support Company Email Policies with Domain-wide Do Not Disturb
Administrators can configure a Do Not Disturb schedule for all users of a domain. During the Do Not Disturb schedule, MDaemon will still collect inbound mail, but users will not be able to check their email or send outbound mail.
Customize User Settings with Improved Account Management
MDaemon’s Account Manager has been improved. Administrators can now select accounts that are enabled, using MultiPOP, are using 70% or 90% of their quota, or are not forwarding.
The Account Manager right-click menu now allows administrators to add or remove all selected accounts to or from mailing lists or groups.
When creating IMAP filters for an account, the Publish button allows administrators to add the new rule to every account in the account’s domain.
Improved Archiving to Meet Specific Requirements
MDaemon’s archiving system has been improved, with new IN and OUT folders for senders and recipients. The new, dedicated “To Archive” queue allows messages placed in the queue (whether manually or via content filtering rules) to be archived. This is useful when an administrator wishes to archive only messages that meet specific criteria, rather than archiving all inbound and/or outbound messages. Also, an option was added to archive messages sent to public folder submission addresses.
Improved Active Directory Integration
New features have been added to MDaemon’s Active Directory integration, including monitoring of Active Directory groups and improved handling of aliases. Also, several new fields are now supported in contact records within address books when they are added or modified in Active Directory.
When MDaemon’s Active Directory monitoring system creates or updates an account with a mailbox value that exceeds the maximum character limit, it will truncate the mailbox value as before but now it will also create an alias using the full size mailbox value.
Improved Mail Routing with Customized Authentication & Delivery Settings
new Host Authentication feature, administrators can designate the logon,
password, and port to be used if other task-specific credentials have not been
specified when sending mail to a specific host.
Improved Custom Queues & Message Routing
Custom queues have been improved with new routing features. You can now specify a host, logon, password, SMTP return-path, and port for any remote queue. Eligible messages are placed in these queues based on criteria specified via content filtering rules.
Improved Mailing List Support for Shared Domains
MDaemon’s Domain Sharing feature has been improved, with support for shared mailing lists. This allows a single mailing list to include list members from multiple servers.
Improved Control over Message Forwarding
Administrators have greater control over mail forwarding, including settings to prevent accounts from forwarding to external domains, new forwarding scheduling options in the account editor, and macro support in the Forwarding field of the New Account Template. Also, accounts that only forward are no longer disabled or deleted for inactivity.
Improved Logging for Easier Tracking of Deleted Accounts and IMAP Messages
For easier tracking, the IMAP session log now includes the file name of every deleted message. Also, as part of the nightly midnight cleanup process, MDaemon will write the names and email addresses of every account deleted that day to the day’s system log. This allows all deleted accounts to appear together in one place for log searching.
New Features for End Users
Improved Message Recall System
MDaemon’s Message Recall system has been improved. Users can now recall messages from other queues, or even from the Inboxes of other local users, even after any initial delivery delays during which messages are held in the Deferred queue. MDaemon will track the last 1000 messages sent through the server via authenticated sessions and process message recall requests for messages that were sent within the last 1000 messages. This allows users to recall messages directly from other local MDaemon users’ Inboxes after they have been delivered.
For a complete list of new features & updates, please see the MDaemon release notes.
Please note the following branding changes. SecurityPlus is now MDaemon Antivirus. Outlook Connector is now MDaemon Connector for Outlook, WorldClient is now MDaemon Webmail, and ActiveSync is now MDaemon ActiveSync.