Tell us about your

Spam Headache
 

Email Encryption

TLS, DomainKey Encryption
 

What works best?

Favorite Backlist service
 

XWall release 3.44

Print PDF

Monday, 09 March 2009 13:04 Last Updated on Friday, 20 March 2009 12:27 Written by Administrator

LookoutThe latest XWall release allows you to add comments in the ini file. Seasoned XWall users will love this option. As example you can add notes to an IP address so it makes still sense to you tomorrow morning. There are a lot of other new features that makes administration easier. Download it Today. 

  • New: Support for GBK ( Chinese ) codepage
  • New: Block outbound messages that are not from an internal domain ( OutboundBlockAddressOnlyInternal=True )
  • New: Optional startup delay in the case the virus scanner or DNS server is not starting fast enough ( StartupDelayFresh=5 )
  • New: XWall.ini allows comments using a semicolon
  • New: Comment for every list field
  • New: Send information message after startup ( SendStartup=True )
  • New: Send information message when there was a warning after startup ( SendStartupWarn=True )
  • New: Hide SLS service info in error message; needed for Trend Micro Reputation Service ( InboundESMTPHideSLSInfo=True )
  • New: Warning when ini is read-only or no read-write ACL
  • New: Heuristic checks for text obfuscation with HTML tags in plain text
  • New: Verbose logging for disclaimer ( VerboseDisclaimer=True )
  • New: The logfile shows which e-mail template was used to block an e-mail address
  • New: Recommended SLS/RBL b.barracudacentral.org
  • Chg: yahoogroups.com removed from default exclusion
  • Chg: Update of X-Mailer in Options->Blocking->Header
  • Chg: Files for disclaimer can be in any directory, default is XWall directory
  • Chg: UAC is requireAdministrator for MBSever.exe and highestAvailable for MBAdmin.exe
  • Fix: Ignoring MIME Content-Disposition header fields with longer value like "filenamexxx"
  • Fix: White List was not properly updated when the message was sent to more than one recipient
  • Fix: Exchange 2007 is not able to decode a MIME subject with more than 225 bytes word len
  • Fix: Disclaimer and S/MIME address with a star was not working as expected
  • Fix: Reassemble message uses codepage UTF-7 when the original codepage is US-ASCII, but the text contains non-ASCII characters
  • Fix: DNS validation is repeated several times in the case of a DNS error
  • Fix: Manifest and UAC elevation also for MBServer.exe
  • Fix: ESMTP AUTH LOGIN with Microsoft .NET Framework (Namespace System.Net.Mail)
  • Fix: non-delivery report for a message with a 4xx and 5xx error showed the reason for the 4xx rather then 5xx error

 

ESAT 1.33

Print PDF

Sunday, 01 February 2009 11:31 Last Updated on Thursday, 28 May 2009 22:40 Written by Peter Banz

ESAT 1.33 is available on our support site in the download section. It contains several bug fixes and a new white list option for the administrator. (http://support.ceratec.net)

CCS - What are you missing?

Print PDF

Monday, 08 September 2008 18:00 Last Updated on Friday, 30 January 2009 12:48 Written by Peter Banz

Over the past year or two we have seen new types of spam to evolve. In some cases spamers come up with some pretty interesting ways of getting their message delivered. However there is something they have in common. It's quantity - the more spam they send the more profits they can expect. That's exactly where XWall CCS enters the picture. The CCS is based on a message body checksum. All XWalls with CCS send their checksums to the central server and it keeps track of the bad guys. Actually the more spam the better it gets. A year ago you may considered CCS to catch an other percent or two of your spam. Today it's getting to be a premier tool to catch spam. Take a look at the screenshots. Not only has CCS moved up in the ranks, it catches a lot of spam other filters will not. Best of all it stops new variant of spam without your intervention.

Exclude trap

Print PDF

Saturday, 31 January 2009 12:55 Last Updated on Friday, 20 March 2009 12:30 Written by Peter Banz

Your domain maybe an exclude trap! The science of spam catching sometimes gives you unexpected results. If you experience a sudden increase of spam it may not be that the spammers got more resourceful. But you accidentally gave them a free pass to your users.

My first advice - check the message headers for "XWall - Global Exclude, white l ist exclude". Since email now comes from sources outside of Exchange like Backbery's, IPhones, hosted web forms and so on. In order to guarantee delivery of emails from these sources admins often implement an global exclude for their domains. All a spammer now needs to do is send the spam with a fake from address borrowing it from one of your users and it's free sailing for them.  Try not to exclude your domain(s) via the global exclude - Email From.  Instead exclude your ip addresses, host names and such. 

It's not your birthday

Print PDF

Wednesday, 28 May 2008 18:00 Last Updated on Thursday, 19 March 2009 22:37 Written by Peter Banz

ECARD VARIANT welcome letter. The first variant of the Ecard Zombie showed up in one of my clients Inbox today. It thanks you for signing up and includes a link to a website .... bad news of course. But there is good news. Your current Xwall (3.29+) can block the ip address. Add a string http://#.#.#.# in admin-> option-> blocking-> html

Other considerations that can stop the ECARD Zombie - SURBL, SPF and  ClamAV. 

More Articles...