Search found 24 matches

by fbmaxwell
Sun Apr 30, 2017 11:06 am
Forum: MailEnable Standard Edition
Topic: Meaning of "Sender must be valid"=dword:00000000
Replies: 1
Views: 6951

Meaning of "Sender must be valid"=dword:00000000

I can't find any documentation for this SMTP registry key: "Sender must be valid"=dword:00000000 The name sounds like something I'd want (who wants email from invalid senders?), but I don't know what it checks for validity and what values are valid for the key. I know that there's a separate check f...
by fbmaxwell
Sat Feb 04, 2017 12:37 pm
Forum: MailEnable Standard Edition
Topic: EHLO blocking and/or SMTP whitelisting bug
Replies: 1
Views: 6894

Re: EHLO blocking and/or SMTP whitelisting bug

This remains a problem in 9.54. When entering strings to be blocked, the following wording is shown: Enter the strings you want to block at the EHLO command. When a remote server connects and sends the EHLO command with a string you are blocking the connection will be dropped. Yet the connection is ...
by fbmaxwell
Thu Jan 12, 2017 9:42 am
Forum: MailEnable Standard Edition
Topic: EHLO blocking and/or SMTP whitelisting bug
Replies: 1
Views: 6894

EHLO blocking and/or SMTP whitelisting bug

I added an EHLO blocking entry for any server impersonating my own (see rationale below). This resulted in my server disconnecting on itself (127.0.0.1) when trying to send bounce messages back to senders. So I added 127.0.0.1 to the SMTP whitelist. Unfortunately, the whitelist doesn't work for EHLO...
by fbmaxwell
Tue Dec 27, 2016 11:48 pm
Forum: Suggestions
Topic: EHLO Blocking -- Add to denied IP list
Replies: 2
Views: 23272

Re: EHLO Blocking -- Add to denied IP list

Adding to the denied IP address is not ideal since the IP hangs around too long and just slows down connections (when that list gets large). I can purge the list if I find connections getting too slow. That's a lot better than having 350K lines in my log files. Besides, why is it okay to add to the...
by fbmaxwell
Sun Nov 20, 2016 12:34 pm
Forum: Suggestions
Topic: EHLO Blocking -- Add to denied IP list
Replies: 2
Views: 23272

EHLO Blocking -- Add to denied IP list

As many MailEnable users know, an EHLO connect string of "ylmf-pc" shows that the connecting computer is part of the spamming botnet known as "PushDo" (and sometimes alternatively "Cutwail"). I've configured EHLO blocking to drop connections on receipt of the "ylmf-pc" string. Over the last three da...
by fbmaxwell
Mon May 23, 2016 12:18 pm
Forum: MailEnable Standard Edition
Topic: How to prevent SPAM at best
Replies: 3
Views: 10934

Re: How to prevent SPAM at best

I am not a fan of trying to filter out spam post-receive. I want my mail server to refuse to accept the message. Every time your mail server accepts the spam, the spammer has confirmation that he's got a valid email address, so expect the spam to keep coming. To that end, I recommend the following: ...
by fbmaxwell
Mon May 23, 2016 11:24 am
Forum: MailEnable Standard Edition
Topic: Trouble Getting SSL to work in ME Standard 9.10.
Replies: 18
Views: 27399

Re: Trouble Getting SSL to work in ME Standard 9.10.

Hello Dhanasekar, I wish that I could report success, but I never did solve the problem -- despite hours of effort trying to. Because I am retired and run MailEnable primarily for my non-commercial, personal domain, I could not justify the costs to handle this with paid ME tech support. I'm hopeful ...
by fbmaxwell
Fri Apr 01, 2016 2:05 am
Forum: MailEnable Standard Edition
Topic: Trouble Getting SSL to work in ME Standard 9.10.
Replies: 18
Views: 27399

Re: Trouble Getting SSL to work in ME Standard 9.10.

Hi, Thanks Ian. I created a self-signed cert in IIS 7, which is annoying due to its refusal to let you edit the domain name. I then chose that cert in the ME properties. As I mentioned previously, ME did not create an IME_SYSTEM account, just an IME_ADMIN and IME_MAILENABLE, so I was not able to pro...
by fbmaxwell
Thu Mar 31, 2016 6:32 am
Forum: MailEnable Standard Edition
Topic: Trouble Getting SSL to work in ME Standard 9.10.
Replies: 18
Views: 27399

Re: Trouble Getting SSL to work in ME Standard 9.10.

Hi Ian, Thanks for your help on this one. Just in case this is the clue you need, I'm putting it up front: 03/31/16 02:45:17 SMTP-IN 8D1832B30B6845FF86C43414ECEF48BF.MAI 748 192.168.1.100 STARTTLS STARTTLS 454 TLS not available due to temporary reason 71 10 Re-installing from the new v9.10 you direc...
by fbmaxwell
Wed Mar 30, 2016 12:22 pm
Forum: MailEnable Standard Edition
Topic: Trouble Getting SSL to work in ME Standard 9.10.
Replies: 18
Views: 27399

Trouble Getting SSL to work in ME Standard 9.10.

I was excited to see that ME Standard Edition now includes "SSL and TLS Support". Unfortunately, I've pulled my hair out trying to get it to work with a self-signed certificate. I've been through every knowledgebase topic on it. I've read every how-to post I can find. ● I've created self-signed cert...
by fbmaxwell
Wed Jun 11, 2014 10:07 am
Forum: Third Party Applications
Topic: Blocking China (spam)
Replies: 10
Views: 70792

Re: Blocking China (spam)

Although this is now an ancient thread, there is a way to block e-mail from entire countries. It's a DNS blacklist by http://spameatingmonkey.com/geobl/index.html Let's say that you wanted to block e-mail from China. This is what you would use for your Zone: b cn .geobl.spameatingmonkey.net The b me...
by fbmaxwell
Wed Jun 11, 2014 9:08 am
Forum: MailEnable Standard Edition
Topic: "Blocked Addresses" Feature *FIXED* in MailEnableAdmin.msc
Replies: 7
Views: 11614

Re: "Blocked Addresses" Feature *FIXED* in MailEnableAdmin.m

The problem is all fixed in version 8.51 of MailEnable. You can add new blocked addresses with the regular mail console and it works fine.
by fbmaxwell
Wed Jun 11, 2014 8:44 am
Forum: Suggestions
Topic: Disable AUTH only on SMTP (25) port. Allow on 587.
Replies: 0
Views: 8861

Disable AUTH only on SMTP (25) port. Allow on 587.

Suggestion: Provide a means to disable AUTH only on SMTP port (25) while leaving it enabled on the alternate port (typically Submission port: 587). Provide a way to auto-ban any IP that attempts even a single AUTH command on the SMTP port. [/b] Rationale: The availability of the AUTH command on the...
by fbmaxwell
Tue May 27, 2014 2:43 pm
Forum: Suggestions
Topic: Ban IP That Repeatedly Tries To Relay Spam
Replies: 6
Views: 16841

Re: Ban IP That Repeatedly Tries To Relay Spam

Ian, Thanks for your reply. So, I'm going to go back to my original request: Provide a means of automatically adding an IP address to the banned IP address list after some number of unauthenticated relay attempts within some time period -- hopefully configurable to something like three attempts in 1...
by fbmaxwell
Mon May 26, 2014 7:02 am
Forum: Suggestions
Topic: Ban IP That Repeatedly Tries To Relay Spam
Replies: 6
Views: 16841

Re: Ban IP That Repeatedly Tries To Relay Spam

Hello Ian, The description of that fearure is "IP addresses will be blocked if they are incorrectly authenticating" and "(eg: password dictionary attacks)." In the case I'm talking about, the spammer is trying to relay without attempting to authenticate at all (no SMTP AUTH command). Does it address...