Welcome to Vastspace, provides Reliable Web Hosting since 2014

Welcome to Vastspace

Archive

SmarterMail – Migration makes easy

SmarterMail – Migration makes easy

If you are using one of the email servers and want to migrate to SmarterMail, you can use the migration tool in the webmail as shown. Basically, SmarterMail imports all your emails stored on the current mail server either using POP3 or IMAP4, however, if you are Gmail user, you can import calendars, tasks and contacts too.

smartermail migration1

 

gmail migration

Brute-force Protection

Brute-force Protection

Whether you are using Exim, Postfix or others, I personally feel that the brute-force protection is necessary. I have seen unauthorized login attempts on email accounts especially the common ones.

I supposed your service provider has been telling you ‘please use the strong password’. However, Imseeing compromised account use a weak password. So, please remind yourselves always to use strong passwords.

brute force

A strong password can be 13 characters and above, a mixture of the symbols, capital letters, small letters and numbers. You don’t and never define such as strong password ‘P@ssword123456’ Yes. it has more than 13 characters., symbols, capital, small letters and numbers.

This type of password is very guessable, they are likely in the hacker’s dictionary. Never use this kind of password. Combination of name, birthday, handphone and NRIC number should be avoided too. A password is your first defence line, hence it is important to make sure they are not guessable.

Devices have set up with email services should install with a good anti-virus capable of detecting malicious activities like for example ports scanning which is common nowadays. This is also important to an individual, even you have a strong password, there is risk your password is stolen through a backdoor on a virus-infected devive.

If you do have the above both, the brute-force protection is useful but it is not 100% you are protected or you are safe. Hackers will attempt to login to your email account with their hacking program using a guessable password.

The ideal of brute-force protection is a rule to block further failed login after X attempts in X interval and block the source for an X period. This is effective to bar authorized access. Whoever came out the mechanism is a genius. This mechanism has protected many, not only email accesses.

Like SmarterMail has such feature out of the box, actually more like internal spammer etc. However, today topic is mainly on brute-force and yes, SmarterMail has built-in with such feature. The server admin can define the number of attempts and the block interval. SmarterMail will display the IP address and its location, should you blacklist them permanently.

I personally felt this is a great feature to protect our email users. This feature reduces the workload on email server admin too. A good email system must built-in with a good security feature and SmarterMail did it.

 

How to reduce spam emails?

How to reduce spam emails?

Actually, it is frustrating if you are receiving a lot of spam email. Even you have so-called the best anti-spam on your email service, you can receiving spam email, maybe lesser and at the same time, you might treat some emails as spam email, known as false positive.

SPAMEXPERTAs far as I’m concerned, there isn’t 100%. With anti-spam you are receiving lesser definitely but your definition is never the same as the server. Some anti-spam require you to set rules or train them in order to be effective

Thus, you cannot eliminate those spam emails defined by you. However, you can still minimise receiving spam emails without spending a lot to or buy a good anti-spam. Here are a few tips to help you;

a. Never use your ‘work’ email to do registration online for personal use, Your email address can be sold to someone for bulk sending. Always think twice if registration is necessary.

b. Avoid common account name like help, sales, enquiry or similar. If your name is John, avoid using john@, and add your last name.

c. Do not advertise your email address. Spammers like to use harvesting technique to collect email addresses. Common areas like auction portals, buy & sell portal etc.

e. Make sure you use SPF in your domain name DNS allows only permitted email server to send email on your behalf. I recommend ‘-a’ at the end of SPF record if you want to enforce those emails impersonate your organization.

f. Use effective RBLs on your email server. Reputable RBLs filter emails sent from bad IP addresses.

 

 

 

.

Should you own a dedicated email server?

dedicated serverShould you own a dedicated email server?

I’m seeing some of my customers are hosting a hundred or more email accounts using cPanel or Plesk onyx. There is nothing wrong using these control panels, email service is free using either Exim or Postfix. There are free and open source email server. Anti-Spam features are limited to free and open source solutions.

They are still ok for daily usages. However, if you are relying on the webmail, the choice is limited to the free and open source solutions. They are not amazing until you have seen better webmail like SmarterMail.

Administrative functions are also limited on these email server. Creating, deleting mailboxes and updating password are likely what you need. A lot of the other features are not available or modify them using SSH shell command.

In my opinion, administrating email server, receiving and sending emails are important for an organization. I’m seeing a lot have neglected this area.

A good email server can save you a lot of troubles and enhance your email deliveries. They are equal to money. Basically, the return is higher than investing in terms of financial values.

Today, we introduce SmartMail DE250Lite at #188 per month. Lower by more than $100 with smaller disk space. The Lite version will ft those with a lower budget if they do not need the large disk space.

Enable DKIM in SmarterMail

Enable DKIM in SmarterMail

DKIM has been popular to ensure email delivery, especially for bulk senders. You can enable DKIM signing on all your outgoing emails. The feature is handy for all SmarterMail administrators. The feature is located in Domain settings.

enable DKIM

DKIM key in SmarterMail

Create and copy the DKIM keys into your domain DNS txt record.

That’s all. Now, you have enabled DKIM.

Is SmarterMail a good email server software?

smartermailIs SmarterMail a good email server software?

Many asked me this question, Is SmarterMail good? How good is good? I have used many email server software for the last 25 years. SmarterMail gives me the reason to acquire partnership. NOT that I said good because I’m selling them but the other way round.

I can still remember it was version 2 when I know the existence of SmaterMail through Plesk. It works on Windows Server and it has given me the perception it was a heavy software and it does simple email function and full stop.

Since then I didn’t pay much attention until version 13 or 14. I have SmarterMail has very intuitive GUI especially the Webmail. Coincidentally, I was turned down by the free webmail offer in many control panels. I was looking for something better but unfortunately. it runs only on a Windows server.

So, this is when I have asked my client to split their website and emails, rather you are putting them int the same server. Yes, you can do that and in a way, you are reducing your risk by having these functions on 2 separated servers. Of course, now can easily use SmarterMail as your email server while you can run your website and Linux Apache web server.

I have noticed those on SmarterMail has high retention rate than others. That’s mean to say, customers are satisfied. And I have noticed many have used webmail and the population on mail client applications like outlook has dropped. I personally use them, the webmail has many good features and it is easy to use.

For those managing a SmarterMail email server will agree with me. If you have administrated other email servers, you will find SmarterMaill is a breeze, it is so much easy to understand and operate. Even you do have a technical background, probably some guidance may do the job.

SmarterMail is built with IDS. We have yet to find any email server software come with an IDS. Brute-force is one common problem for all and SmarterMail has this protection and automatically block unwanted access. Not forgetting the anti-spam, anti-virus, exchange sync add-ons available to enhance users’ experience.

I’m very happy with SmarterMail and proud to be their partner. I have servers are serving a few thousand mailboxes, they are hardly giving me problems. It saves me a tremendous amount of time and efforts in administrating these servers. I love SmarterMail.

 

Email Server administrators vs Users

virtual serversAn email server is a machine, the instructions, the rules, and the policies are implemented by a person. He or she is probably known as the server admin. The server admin manages the operation of a server includes the email service. To end users are about email, but it is not the case for a server admin. When an email is sent or receive it goes through a mechanism. This is a series of rules and policies implemented by the server admin to its email server.

There are a few types of server admin. I mean how they worked and behave, no offence to anyone. These are the peoples I have met, and spoken. I’d like you to understand everyone has their standpoints. Communication is still the key to resolve an issue.

This is what I have heard from both parties. I cannot send email, I cannot receive email, emails are missing. These are the common issues faced by end users. Thus, the server admin steps in. Server admin is not an easy role especially comes to emails. As emails involve the senders and receivers, and most times they are external bodies. So the problem can be anyone. At this point, you need an experienced server admin to narrow down or troubleshoot the issue. Firstly, he or she has to determine it is the sender or receiver’s issue. Then, he or she can drill down and pinpoint where is the issue. Because the email servers are more sophisticated than the last 5 years. Thanks to the spam emails. Most email servers have treated anti-sm as the top priority and feature in an email server. The feature like enable SPF, DKIM, RBL and the various anti-spam mechanisms. Receiving or sending an email is never like before. Before an email is delivered to the mailbox, it goes through a series of anti-spam policies, and some even you are sending an email.

Here come the problems. One day, an end user is walking to the server admin claimed that he has not been able to receive someone’s emails. Sound familiar? A good server admin would start checking on the logs if such emails were delivered. Yes, they were, but it was identified as Spam email, landed in the junk folder, unfortunately, the user has set up a POP3 email account, do not subscribe to this folder. He has missed these emails delivered to the junk folder. Another scenario, the email was bounced by the recipient’s email server. You asked why it was bounced? Then the server admin is trying to explain to you what is SPF. Of course, there are scenarios are not mentioned here. Nevertheless, you now see the differences, the server admin set up the anti-spam policies to combat spam emails but emails are not classified as spam emails by the users but they were spam email on the server.

So who is right? Apparently, no one s wrong. If the users can understand how an email is classified as spam and the remedy. Obviously, he or she does not administrate the server, but the end users should at least know how they work. If the server admin can share the details with the end users like setting up an IMAP email account, how to read email source or header. This knowledge reduces the misunderstandings, and reduce the workload on the server admin. The server admin must understand what he or she is doing, not simply left it as default or the more rule are better. Without a good understanding of how things work, might ruin other’s works.

How to schedule a backup Job on Cloud Server

Each Cloud Server comes with 2 free backup instances at no cost regardless of backup size. Additional backup instances can be ordered at only $10 /monthly. This is a useful feature to customers make changes to their files often and requires a rollback in case of any mishaps.

To perform a manual backup and scheduled backups are very easy tasks with our control panel, just a few clicks away and the hassle-free backup feature will send you an email notification if whether the backup is successful or unsuccessful that requires attention and rectification.

 

 

 

 

 

 

For SmarterMail user, upgrade to Version 13.3

If you have a backdated copy of the SmarterMail, in particular to two of the vulnerabilities found in the earlier version I would suggest to get the latest copy and move up to 13.3.5535. You can download the latest from here: http://smartertools.com/smartermail/mail-server-download.aspx.

Just in case you have forgotten the steps on how to “properly” upgrade your SmarterMail. Please make sure you have a backup before proceed.

  1. Stop IIs www publishing service or SmarterMail web service.
  2. Uninstall SmarterMail without removing the existing folders or files.
  3. Install the latest copy of SmarterMail.
  4. Once it’s completed, start SmarterMail web service or IIs www publishing service.

 

Wait for a minute or so, sign in to admin portal to make sure everything is working. Sometime it might take a little longer to start up if you have a slower server and many mailboxes. Just be patient, do not attempt to restart your Smartermail Service unless it has stopped for some reasons.

 

  • ADDED: Updated administrative logging to include the friendly name of the event that was fired in addition to it’s id number.
  • FIXED: A temporary disk error when reading an account’s userConfig.xml file will no longer result in the user’s settings being reset to the defaults, including a blank password.
  • FIXED: A user with read-only control of a shared calendar can no longer delete instances of a recurring event.
  • FIXED: A zero byte fileStore.xml file will no longer prevent SmarterMail from starting properly.
  • FIXED: Adding a calendar event using Android’s default calendar app with Exchange ActiveSync now syncs correctly.
  • FIXED: Adding a recurring event that occurs on a specific week of each month now syncs correctly using Exchange ActiveSync.
  • FIXED: Adding a task using Outlook 2013 with Exchange ActiveSync now syncs correctly.
  • FIXED: Adding duplicate entries to trusted senders is no longer allowed.
  • FIXED: Availability conflicts are now calculated correctly when adding or editing a new calendar event in webmail.
  • FIXED: Birth dates set on iOS devices using Exchange ActiveSync now sync correctly.
  • FIXED: Changing an event’s start time that includes a domain resource now properly updates the availability of that domain resource.
  • FIXED: Contacts imported from a CSV file that include only white space in certain imported fields are now saved properly, such that they can be successfully synced with Exchange ActiveSync.
  • FIXED: Creating a calendar and immediately deleting an event using the Mac OSX calendar app with Exchange Web Services now syncs correctly.
  • FIXED: Declude spam weights now save correctly.
  • FIXED: Domain resource availability is now calculated properly when determining scheduling conflicts.
  • FIXED: Editing a password brute force or denial of service abuse detection rule for XMPP now correctly sets the service field to XMPP.
  • FIXED: Email folders that contain special characters are now sorted correctly in webmail.
  • FIXED: Exchange ActiveSync responses will no longer send an empty Exceptions tag, which would cause Outlook 2013 to crash.
  • FIXED: Folders with special characters in their name now sync correctly using Exchange ActiveSync.
  • FIXED: Made changes to how folder renaming is handled to prevent a scenario that could cause mailbox corruption.
  • FIXED: Renaming a folder that contains special characters using Exchange ActiveSync no longer causes an error in webmail when trying to view that folder.
  • FIXED: Setting a contact’s birth date on a client synced using CardDAV will no longer save as one day off for users in time zones with positive offsets from GMT.
  • FIXED: Temporary files created during Exchange ActiveSync SmartForward, SmartReply and other email attachment operations are now immediately cleaned up when no longer needed.
  • FIXED: The number of items sent back per Exchange ActiveSync response is now correctly determined using the WindowSize specified by the client.
  • SECURITY: Resolved an XSS vulnerability related to replying to an email.
  • SECURITY: Resolved an XSS vulnerability related to viewing email.