MDaemon® Email Server
      Back to home
      1. Knowledge Base
      2. MDaemon® Email Server

      What are the recommended Security, Dynamic Screening, Spam Filter, AntiVirus, and Outbreak Protection Settings?

      The following are general recommendations for utilizing MDaemon's security and spam features as well as the AntiVirus and Outbreak Protection features provided by MDaemon AntiVirus.

      Security configurations may very from server to server and certain servers may need to be adjusted accordingly.  

      The following screenshots where taken from MDaemon version 17.5.  Prior versions may not contain all of the features below.

      A valid MDaemon AntiVirus key must be activated in order to change AntiVirus and Outbreak Protection settings.

      Please direct any questions to our technical support team for more information. Click here to contact us


      Recommended Security Settings
      1. Navigate to the MDaemon GUI
      2. Select Security
      3. Select Security Settings
      • Security Settings
        • Relay Control
          mdaemon email server security settings detailing recommended relay controls
        • Reverse Lookups
          mdaemon email server security settings detailing recommended options for reverse lookups
        • POP Before SMTP
          mdaemon email server security settings detailing recommended pop before smtp settings
        • Trusted Hosts
          Hosts added to this list will bypass all Security Settings.
        • SMTP Screen
          recommended mdaemon email server smtp screen settings in security settings menu
        • Hijack Detection
          recommended mdaemon email server hijack detection settings to prevent compromised accounts in the security settings menu
        • Spambot Detection
          recommended mdaemon email server spambot detection settings in security settings menu
        • Location Screening
          (Optional) Use this feature to disable SMTP/IMAP/POP connections from unauthorized regions of the world. Learn more about Location Screening here.
          mdaemon email server locatoin screening menu to block SMTP and or SMTP authentication sessions in the security settings menu
      • SSL & TLS
        • MDaemon
          A third party or self-signed certificate must exist in the server's certificate store to use SSL, STARTTLS, and STLS
          mdaemon security settings for enabling ssl, starttls, and stls and configure a certificate in mdaemon email server software
        • WorldClient (web mail)
          You may use the same certificate for WorldClient SSL connections. HTTPS only and HTTP redirected to HTTPS will disable non-SSL connections from occurring for web mail.
          mdaemon security settings for enabling ssl, starttls, and stls and configure a certificate in webmail or worldclient on the mdaemon email server software
        • Remote Administration
          You may use the same certificate for WorldClient and/or MDaemon SSL connections. HTTPS only and HTTP redirected to HTTPS will disable non-SSL connections from occurring for remote administration sessions.
          mdaemon security settings for enabling ssl, starttls, and stls and configure a certificate in remote administration on the mdaemon email server software
        • STARTTLS White List
          Hosts/IPs added to this list will be exempt from using STARTTLS during SMTP sessions.
        • STARTTLS Required List
          Hosts/IPs added to this list will be required to use STARTTLS.
      • Other
        • Backscatter Protection
          recommended backscatter protection settings in mdaemon email server to prevent invalid notifications
        • Tarpitting
          recommended mdaemon email server tarpitting settings to include ehlo helo delays
        • Greylisting
          recommended mdaemon email server greylisting settings to temporary reject messages from unknown connections
        • LAN Domains
          Domains listed here are considered by MDaemon to be part of the local area network (LAN)..
        • LAN IPs
          IPs listed here will be considered by MDaemon to be part of the local area network (LAN).
        • Site Policy
          Text transmitted during the initial connection of each SMTP session.
          Policies should be limited to 15 lines with 75 characters per line.


      Recommended Dynamic Screening Settings

      The Dynamic Screening menu prior to MDaemon version 17.5 can be found by following the steps below.
      Please note that many of the below options are not available and should be followed as closely as possible.

      1. Select Security
      2. Select Security Settings
      3. Expand Screening
      4. Select Dynamic Screening

      To open Dynamic Screening in MDaemon version 17.5 and above...

      1. Select Security
      2. Select Dynamic Screening...
      • Options/Customize
        mdaemon email server dynamic screening options and customization screen
      • Authentication Failure Tracking
        mdaemon email server authentication failure tracking recommended settings for authentication security
      • Dynamic Blacklist
        IP addresses can be added here permanently or expire after an desired date.  CIDR notation and wildcards(*) are accepted here.mdaemon email server dynamic screening and dynamic blacklist GUI screen
      • Dynamic Whitelist
        Exempt IP addresses or ranges.  Default settings are pictured below.
        mdaemon email server dynamic whitelist
      • Protocols
        mdaemon email server protocol option list for the dynamic screening service
      • Notifications
        mdaemon email server dynamic screening notification options


      Recommended AntiVirus Settings

      • MDaemon AntiVirus must be activated to access this menu.
      1. Open the MDaemon GUI
      2. Select Security 
      3. Select AntiVirus
      • Content Filter
        • AntiVirus
          mdaemon email server recommended antivirus configuration

      Recommended Outbreak Protection Settings

      • MDaemon AntiVirus must be activated to access this menu.
      1. Navigate to the MDaemon GUI
      2. Select Security
      3. Select Outbreak Protection
        • Outbreak Protection
          mdaemon email server antivirus outbreak protection recommended settings

      Recommended Spam Filter Settings

      1. Navigate to the MDaemon GUI
      2. Select Security
      3. Select Spam Filter
      • Spam Filter
        • Spam Filter
          mdaemon email server antispam spam filter recommended settings
        • Bayesian Classification
          mdaemon email server bayesian classification recommended security settings
        • Bayesian Auto-learning
          mdaemon email server recommended bayesian auto learning security settings
        • Spam Daemon (MDSpamD)
          No changes to be made here unless instructed to from technical support.
        • White List (Automatic)
          mdaemon email server recommended security settings for automatic white list settings
        • White List (no filtering)
          Local domains/addresses should not be on this list
        • White List (by recipient)
          Local domains/addresses should not be on this list
        • White List (by sender)
          Local domains/addresses should not be on this list
        • Black List (by sender)
          Local domains/addresses should not be on this list
        • Updatesmdaemon email server recommended security settings detailing spam filter updates
        • Reporting
          mdaemon email server recommended spam filter security settings for reporting
        • Settings
          mdaemon email server recommended spam filter settings
      • DNS-BL
        • Hosts
          mdaemon email server recommended spam filter settings for DNS blacklist hosts
        • White List
          Local domains/addresses should not be on this list
        • Settings
          mdaemon email server recommended spam filter settings for the dns blacklist settings