1. Knowledge Base
  2. MDaemon® Email Server

What are the recommended Security, Dynamic Screening, Spam Filter, AntiVirus, and Outbreak Protection Settings?

The following are general recommendations for utilizing MDaemon's security and spam features as well as the AntiVirus and Outbreak Protection features provided by MDaemon AntiVirus.

Security configurations may very from server to server and certain servers may need to be adjusted accordingly.  

The following screenshots where taken from MDaemon version 17.5.  Prior versions may not contain all of the features below.

A valid MDaemon AntiVirus key must be activated in order to change AntiVirus and Outbreak Protection settings.

Please direct any questions to our technical support team for more information. Click here to contact us


Recommended Security Settings
  1. Navigate to the MDaemon GUI
  2. Select Security
  3. Select Security Settings
  • Security Settings
    • Relay Control
      mdaemon email server security settings detailing recommended relay controls
    • Reverse Lookups
      mdaemon email server security settings detailing recommended options for reverse lookups
    • POP Before SMTP
      mdaemon email server security settings detailing recommended pop before smtp settings
    • Trusted Hosts
      Hosts added to this list will bypass all Security Settings.
    • SMTP Screen
      recommended mdaemon email server smtp screen settings in security settings menu
    • Hijack Detection
      recommended mdaemon email server hijack detection settings to prevent compromised accounts in the security settings menu
    • Spambot Detection
      recommended mdaemon email server spambot detection settings in security settings menu
    • Location Screening
      (Optional) Use this feature to disable SMTP/IMAP/POP connections from unauthorized regions of the world. Learn more about Location Screening here.
      mdaemon email server locatoin screening menu to block SMTP and or SMTP authentication sessions in the security settings menu
  • SSL & TLS
    • MDaemon
      A third party or self-signed certificate must exist in the server's certificate store to use SSL, STARTTLS, and STLS
      mdaemon security settings for enabling ssl, starttls, and stls and configure a certificate in mdaemon email server software
    • WorldClient (web mail)
      You may use the same certificate for WorldClient SSL connections. HTTPS only and HTTP redirected to HTTPS will disable non-SSL connections from occurring for web mail.
      mdaemon security settings for enabling ssl, starttls, and stls and configure a certificate in webmail or worldclient on the mdaemon email server software
    • Remote Administration
      You may use the same certificate for WorldClient and/or MDaemon SSL connections. HTTPS only and HTTP redirected to HTTPS will disable non-SSL connections from occurring for remote administration sessions.
      mdaemon security settings for enabling ssl, starttls, and stls and configure a certificate in remote administration on the mdaemon email server software
    • STARTTLS White List
      Hosts/IPs added to this list will be exempt from using STARTTLS during SMTP sessions.
    • STARTTLS Required List
      Hosts/IPs added to this list will be required to use STARTTLS.
  • Other
    • Backscatter Protection
      recommended backscatter protection settings in mdaemon email server to prevent invalid notifications
    • Tarpitting
      recommended mdaemon email server tarpitting settings to include ehlo helo delays
    • Greylisting
      recommended mdaemon email server greylisting settings to temporary reject messages from unknown connections
    • LAN Domains
      Domains listed here are considered by MDaemon to be part of the local area network (LAN)..
    • LAN IPs
      IPs listed here will be considered by MDaemon to be part of the local area network (LAN).
    • Site Policy
      Text transmitted during the initial connection of each SMTP session.
      Policies should be limited to 15 lines with 75 characters per line.


Recommended Dynamic Screening Settings

The Dynamic Screening menu prior to MDaemon version 17.5 can be found by following the steps below.
Please note that many of the below options are not available and should be followed as closely as possible.

  1. Select Security
  2. Select Security Settings
  3. Expand Screening
  4. Select Dynamic Screening

To open Dynamic Screening in MDaemon version 17.5 and above...

  1. Select Security
  2. Select Dynamic Screening...
  • Options/Customize
    mdaemon email server dynamic screening options and customization screen
  • Authentication Failure Tracking
    mdaemon email server authentication failure tracking recommended settings for authentication security
  • Dynamic Blacklist
    IP addresses can be added here permanently or expire after an desired date.  CIDR notation and wildcards(*) are accepted here.mdaemon email server dynamic screening and dynamic blacklist GUI screen
  • Dynamic Whitelist
    Exempt IP addresses or ranges.  Default settings are pictured below.
    mdaemon email server dynamic whitelist
  • Protocols
    mdaemon email server protocol option list for the dynamic screening service
  • Notifications
    mdaemon email server dynamic screening notification options


Recommended AntiVirus Settings

  • MDaemon AntiVirus must be activated to access this menu.
  1. Open the MDaemon GUI
  2. Select Security 
  3. Select AntiVirus
  • Content Filter
    • AntiVirus
      mdaemon email server recommended antivirus configuration

Recommended Outbreak Protection Settings

  • MDaemon AntiVirus must be activated to access this menu.
  1. Navigate to the MDaemon GUI
  2. Select Security
  3. Select Outbreak Protection
    • Outbreak Protection
      mdaemon email server antivirus outbreak protection recommended settings

Recommended Spam Filter Settings

  1. Navigate to the MDaemon GUI
  2. Select Security
  3. Select Spam Filter
  • Spam Filter
    • Spam Filter
      mdaemon email server antispam spam filter recommended settings
    • Bayesian Classification
      mdaemon email server bayesian classification recommended security settings
    • Bayesian Auto-learning
      mdaemon email server recommended bayesian auto learning security settings
    • Spam Daemon (MDSpamD)
      No changes to be made here unless instructed to from technical support.
    • White List (Automatic)
      mdaemon email server recommended security settings for automatic white list settings
    • White List (no filtering)
      Local domains/addresses should not be on this list
    • White List (by recipient)
      Local domains/addresses should not be on this list
    • White List (by sender)
      Local domains/addresses should not be on this list
    • Black List (by sender)
      Local domains/addresses should not be on this list
    • Updatesmdaemon email server recommended security settings detailing spam filter updates
    • Reporting
      mdaemon email server recommended spam filter security settings for reporting
    • Settings
      mdaemon email server recommended spam filter settings
  • DNS-BL
    • Hosts
      mdaemon email server recommended spam filter settings for DNS blacklist hosts
    • White List
      Local domains/addresses should not be on this list
    • Settings
      mdaemon email server recommended spam filter settings for the dns blacklist settings