Check out the latest Beta
- New: TLS with Perfect Forward Secrecy (PFS) using ECDH und DHE (proposed by C't magazine for computer technology)
- New: Detect Phishing, Scam and Malware using Sanesecurity community rules (http://www.sanesecurity.com) (Options->Spam->Sanesec)
- New: ClamAV virus scanner in native mode (Options->Virus->ClamAV)
- New: More options for Kaspersky virus scanner
- Fix: DKIM verify when the TXT record is quoted
- Fix: Decoding recursive TNEF message
- Chg: SMIME cipher changed from DES3 with 168 bit to AES with 256 bit Download: the link to the beta is here in our download section.
XWall 3.49 changelogs
- New: Add inbound header based on sender or recipient (InboundHeader=)
- New: Support for Exchange 2010 Importance header line
- New: SMIME sign and encryption of pre-signed and/or pre-encrypted messages
- New: Reassemble of SMIME signed, detach signed and encrypted messages
- New: Support for DANE TLSA certificate verification (OutboundSMTPTLSVerifyDANE=True)
- New: Support for DomainKeys Identified Mail Signatures (DKIM)
- New: DKIM verification using Author Domain Signing Practices (ADSP)
- New: Heuristic checks for identical URL
- New: Phishing method uses DKIM
- New: Added additional DKIM error messages
- New: Terminate connection after a client tried two messages without any valid sender or recipient address
- Chg: Accept an E-Mail address with a user part longer than 64 bytes
- Chg: SPF reject during the SMTP session is immediately after the MAIL FROM
- Chg: Country blocking is for IPv4 addresses only and ignores IPv6 addresses
- Chg: SLS/RBL IPv4 lists are only used for IPv4 addresses, IPv6 lists only for IPv6 addresses
- Chg: Removed support for Domain-Based Email Authentication Using Public Keys Advertised in the DNS (DomainKeys)
- Chg: MX query for inbound domains uses old cached IP addresses in the case the DNS server is not available
- Chg: Protect SLS and SPF global exclusion against faked header lines
- Chg: Updated domains in Options->Global Exclude->DKIM->Add common
- Chg: Exploit method handles RAR archives like ZIP archives
- Fix: SMIME remove signature for outgoing messages
- Fix: Disable TLS/SSL cipher DES-CBC-SHA
- Fix: Virus scanner in a directory with an Umlaut
- Fix: DNS server that can not handle EDSN records
- Fix: History added non-delivery reports even then outbound history was disabled
- Fix: no DKIM check for messages using an inbound domain as the sender
- Fix: Domain in global SPF exclusion
- Fix: UnRAR DLL v4.20 with a RAR volume
- Fix: TLS with more than one intermediate certificate shows wrong status
- New: Automatically exclude major ISP from Greylisting (Gmail,Hotmail,Office,MessageLabs,Postini,GMX)
- New: Heuristic checks for phishing html attachments
- Fix: SMTP AUTH PLAIN for some versions of Android
- New: Protection against connection flooding from a botnet (Options->Blocking->Drop)
- New: View->Advanced Configuration->SMTP->Close connection after rejecting MAIL FROM
(Note: This violates the RFC)
- Fix: Phishing method with an URL that is folded using a CRLF
- Fix: SPF ignore invalid ip4:hostname
- Chg: SMTP session no longer accepts a RCPT TO after a rejected MAIL FROM command
- Fix: Add outbound DKIM and disclaimer for a Star-Match-All only when the sender is on Exchange
- Fix: Server query for an userbased white list
- Chg: Optimized adding of a disclaimer at the end of a very large HTML message
- Chg: Disable QuickEdit-Mode when running as a console application
- Chg: Blocking a host or IP address during the SMTP session is done after the MAIL FROM and a second time after the RCPT TO
- Chg: Ignore IPv6 MX record when IPv6 is not enabled
- Fix: SPF ignore empty txt record
- Fix: Add outbound DKIM and disclaimer only when the sender is on Exchange
- New: Detection of phishing messages (Options->Spam->Phishing)
Hot Weather Spam Catching
It's just too hot outside. So I spent a few minutes checking on how effective a few setting changes to an XWall installation are. The site has about 110 users. About 84% of their email is spam. The 2nd graph shows the situation after some changes Maga recommended in a forum post. Note the 10% drop in Total messages. Since some spammer don't wait for the 20 sec greetings delay it can be assumed that the increased delay may represent up to 10% less spam.
June 27 2012 Total messages received 3072
July 02 2012 Total of 2786 messages reveived
Changes made: Added 2 more SURBLs and set Greeting delay from 2 sec to 20 sec
Legend: Filter - Detected
Move Spam to Exchange Junk mail
Contribution by Maga: To automatically move Spam to the Junk-E-Mail folder for all users, you create a transport rule on your Exchange 2007 / 2010.
Start EMC, browse to "Organization Configuration", "Hub Transport", Select Tab "Transport Rules".
Add a new rule which translates any X-XWall-Spam header tag into SCL 9.
Note that \S (backslash followed by capital S) means "any non-blank character", thus catching all possible tags (sls, internal-from, udm, surbl, backscatter, and so on)
Exchange Server Spam Filter and so much more
XWall is a server based spam filter and email firewall with a proven track record well over a decade. XWall is designed for Microsoft Exchange (5.5, 2000, 2003, 2007, 2010 including SB versions 32/64bit). It can be just as effective on SMTP mail servers like Imail, Atmail, Lotus Domino, Groupwise and many other standard SMTP mail servers.
XWall offers a wide variety of filters to combat spam, junk mail, email viruses, dangerous attachments and many other undesired email situations. Using XWall you may attach disclaimers to all outgoing email, and you can archive all in and outgoing email for days, months and years. XWall keeps a detailed daily log including several informative statistics.
Try the XWall spam filter today on your Exchange server and effectively control spam and viruses in your company's email. XWall operates on Microsoft platforms: Server 2000, 2003, 2008 Standard, Enterprise, R2 and all Small Business Servers including SB2011. Xwall is VM friendly and may also be placed on a XP, Vista or 7 workstation.
XWall is available in native 32 and 64 bit versions. It can be run as application or preferable as a windows service on the same machine as Exchange or on a seperate system all together. You can find more information about XWall in our XWall feature section.
Did you know
XWall offers many featues you may not be aware of:
- IPv6 support. We all know it's coming - so you know you're ready.
- Bandwidth Trottling allows you to limit send or receive the data part of a message. This is a great feature if you need to handle messages with large attachments.
- eFAX option converts an Exchange IMCEXAF to an eFAX SMTP address.CCS The Central
- Checksum Service is designed to defect bulk email world wide.