[MDaemon-L] Efek Ransomware
> > > > > Tidak perlu diubah kalau port-2x itu sesuai dengan yang dipakai (active) > di MDaemon Anda. > > http://mdaemon.dutaint.co.id/mdaemon/17.0/index.html? > default-domain-and-servers_ports.htm > > > Baik terimakasih Pak. Regards, Asep. Y -- --MDaemon-L-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1
[MDaemon-L] Email Rejected
Pagi Pak Syafril, Mohon pencerahannya pak, Ada email dari customer kami yang tidak masuk dikarenakan ter-reject karena SPAM Scorenya tinggi, tetapi domainnya (Huawei.com) dan sudah kami masukkan kedalam Whitelist. Berikut Log SMTP-In nya pak: Mon 2017-05-15 12:08:15: -- Mon 2017-05-15 12:08:20: Session 1784; child 21; thread 2184 Mon 2017-05-15 12:01:56: Accepting SMTP connection from [45.249.212.187:15411] Mon 2017-05-15 12:01:56: --> 220 mail.mandau.id ESMTP MDaemon 10.0.2; Mon, 15 May 2017 12:01:56 +0700 Mon 2017-05-15 12:01:57: <-- EHLO szxga01-in.huawei.com Mon 2017-05-15 12:01:57: --> 250-mail.mandau.id Hello szxga01-in.huawei.com, pleased to meet you Mon 2017-05-15 12:01:57: --> 250-ETRN Mon 2017-05-15 12:01:57: --> 250-AUTH=LOGIN Mon 2017-05-15 12:01:57: --> 250-AUTH LOGIN CRAM-MD5 Mon 2017-05-15 12:01:57: --> 250-8BITMIME Mon 2017-05-15 12:01:57: --> 250 SIZE 3500 Mon 2017-05-15 12:01:58: <-- MAIL From:SIZE=32017 Mon 2017-05-15 12:01:58: Performing IP lookup (huawei.com) Mon 2017-05-15 12:01:58: * D=huawei.com TTL=(9) A=[45.249.212.124] Mon 2017-05-15 12:01:58: * P=010 S=001 D=huawei.com TTL=(1) MX=[mx5.huawei.com] Mon 2017-05-15 12:01:58: * P=020 S=000 D=huawei.com TTL=(1) MX=[mx3.huawei.com] Mon 2017-05-15 12:01:58: * P=020 S=002 D=huawei.com TTL=(1) MX=[mx4.huawei.com] Mon 2017-05-15 12:01:58: * D=huawei.com TTL=(9) A=[45.249.212.124] Mon 2017-05-15 12:01:58: * D=huawei.com TTL=(9) A=[45.249.212.124] Mon 2017-05-15 12:01:58: * D=huawei.com TTL=(9) A=[45.249.212.124] Mon 2017-05-15 12:01:58: End IP lookup results Mon 2017-05-15 12:01:58: --> 250 , Sender ok Mon 2017-05-15 12:02:02: <-- RCPT To: Mon 2017-05-15 12:02:02: Performing DNS-BL lookup (45.249.212.187 - connecting IP) Mon 2017-05-15 12:02:02: * zen.spamhaus.org - passed Mon 2017-05-15 12:02:02: End DNS-BL results Mon 2017-05-15 12:02:02: --> 250 , Recipient ok Mon 2017-05-15 12:02:10: <-- RCPT To: Mon 2017-05-15 12:02:10: --> 250 , Recipient ok Mon 2017-05-15 12:02:13: <-- DATA Mon 2017-05-15 12:02:13: Creating temp file (SMTP): c:\mdaemon\queues\temp\md5079157.tmp Mon 2017-05-15 12:02:13: --> 354 Enter mail, end with . Mon 2017-05-15 12:02:19: Message size: 29627 bytes Mon 2017-05-15 12:02:19: Performing DKIM lookup Mon 2017-05-15 12:02:19: * File: c:\mdaemon\queues\temp\md5079157.tmp Mon 2017-05-15 12:02:19: * Message-ID: 3c67a7167ced73458e331a52aef47c9053faf...@cgkeml506-mbx.china.huawei.com Mon 2017-05-15 12:02:19: * Result: neutral Mon 2017-05-15 12:02:19: End DKIM results Mon 2017-05-15 12:02:19: Performing DomainKeys lookup (Sender: lishuis...@huawei.com) Mon 2017-05-15 12:02:19: * File: c:\mdaemon\queues\temp\md5079157.tmp Mon 2017-05-15 12:02:19: * Message-ID: 3c67a7167ced73458e331a52aef47c9053faf...@cgkeml506-mbx.china.huawei.com Mon 2017-05-15 12:02:19: * Querying for policy: huawei.com Mon 2017-05-15 12:02:19: *Querying: _domainkey.huawei.com ... Mon 2017-05-15 12:02:19: *DNS: * Name server reports domain name unknown Mon 2017-05-15 12:02:19: * Result: neutral Mon 2017-05-15 12:02:19: End DomainKeys results Mon 2017-05-15 12:02:19: Passing message through AntiVirus (Size: 29627)... Mon 2017-05-15 12:02:19: * Message is clean (no viruses found) Mon 2017-05-15 12:02:19: End AntiVirus results Mon 2017-05-15 12:02:19: Passing message through Outbreak Protection... Mon 2017-05-15 12:02:19: * Message-ID: 3c67a7167ced73458e331a52aef47c9053faf...@cgkeml506-mbx.china.huawei.com Mon 2017-05-15 12:02:19: * Reference-ID: fgs=0 Mon 2017-05-15 12:02:19: * Virus result: 0 - Clean Mon 2017-05-15 12:02:19: * Spam result: 1 - Clean Mon 2017-05-15 12:02:19: * IWF result: 0 - Clean Mon 2017-05-15 12:02:19: End Outbreak Protection results Mon 2017-05-15 12:02:19: Passing message through Spam Filter (Size: 29627)... Mon 2017-05-15 12:06:20: * 10 BAYES_99 BODY: Bayesian spam probability is 99 to 100% Mon 2017-05-15 12:06:20: * [score: 1.] Mon 2017-05-15 12:06:20: * 3.2 FH_DATE_PAST_20XX The date is grossly in the future. Mon 2017-05-15 12:06:20: * 0.0 HTML_MESSAGE BODY: HTML included in message Mon 2017-05-15 12:06:20: * 1.8 MIME_BASE64_TEXT RAW: Message text disguised using base64 encoding Mon 2017-05-15 12:06:20: * 1.7 LW_STOCK_SPAM4 Yup, its a spam! Mon 2017-05-15 12:06:20: * 0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS Mon 2017-05-15 12:06:20: End SpamAssassin results Mon 2017-05-15 12:06:20: Spam Filter score/req: 16.70/14.0 Mon 2017-05-15 12:06:20: Message refused because spam score is too high Mon 2017-05-15 12:06:20: --> 554 Sorry, message looks like SPAM to me Mon 2017-05-15 12:08:20: <-- QUIT Mon 2017-05-15 12:08:20: --> 221 See ya in cyberspace Mon 2017-05-15 12:08:20: SMTP session terminated (Bytes in/out:
[MDaemon-L] This message is 62 minutes old; it has 0 minutes left in this queue
Dear, Pak Syafril user saya ada yang mendapatkan email dari postmaster semacam ini : From: MDaemon at mail.aksball.co.id [mailto:postmas...@aksball.co.id] Sent: Wednesday, May 10, 2017 12:26 PM To: ti...@aksball.co.id Subject: WARNING: Message delivery delayed == = Greetings from the MDaemon mail system at mail.aksball.co.id = == The following message: Session-ID: 680531 (specific to this delivery attempt) Queue-ID: pd9000292.msg Message-ID: 001801d2c945$1b016b90$510442b0$@aksball.co.id has not (as yet) been delivered to the following recipient(s): despite one or more unsuccessful attempts to do so. Delivery attempts will continue for up to 48 hours (2 days). If delivery fails after that time you will be separately informed. You do not need to resend the message! The original message headers follow at the end of this report. For information on DSN messages see http://www.altn.com/dsn/. Please quote the Queue-ID, Session-ID, and Message-ID found above in any inquiries regarding this message. = Session Transcript = [680531] Session 680531; child 0001 [680531] Parsing message <\pd3582898.msg> [680531] * From: ti...@aksball.co.id [680531] * To: anatasia.pu...@sjnk.co.id [680531] * Subject: aks shipment lokal [680531] * Size (bytes): 1489285 [680531] * Message-ID: <001801d2c945$1b016b90$510442b0$@aksball.co.id> [680531] * Route slip host: sjnk.co.id [680531] * Route slip port: 25 [680531] Resolving MX record for sjnk.co.id (DNS Server: 8.8.8.8)... [680531] * P=010 S=000 D=sjnk.co.id TTL=(14) MX=[mx2.dnet.net.id] [680531] * P=015 S=001 D=sjnk.co.id TTL=(14) MX=[mx1.dnet.net.id] [680531] * P=020 S=002 D=sjnk.co.id TTL=(14) MX=[mx4.dnet.net.id] [680531] Attempting SMTP connection to mx2.dnet.net.id [680531] Resolving A record for mx2.dnet.net.id (DNS Server: 8.8.8.8)... [680531] * D=mx2.dnet.net.id TTL=(56) A=[203.201.167.5] [680531] Attempting SMTP connection to 203.201.167.5:25 [680531] Waiting for socket connection... [680531] * Connection established 10.0.0.1:53315 --> 203.201.167.5:25 [680531] Waiting for protocol to start... [680531] <-- 220 mx2.dnet.net.id ESMTP [680531] --> EHLO mail.aksball.co.id [680531] <-- 250-mx2.dnet.net.id [680531] <-- 250-PIPELINING [680531] <-- 250-SIZE 28708746 [680531] <-- 250-VRFY [680531] <-- 250-ETRN [680531] <-- 250-STARTTLS [680531] <-- 250-ENHANCEDSTATUSCODES [680531] <-- 250-8BITMIME [680531] <-- 250 DSN [680531] --> STARTTLS [680531] <-- 220 2.0.0 Ready to start TLS [680531] SSL negotiation successful (TLS 1.2, 1024 bit key exchange, 256 bit AES encryption) [680531] SSL certificate is valid (matches mx2.dnet.net.id and is signed by recognized CA) [680531] --> EHLO mail.aksball.co.id [680531] <-- 250-mx2.dnet.net.id [680531] <-- 250-PIPELINING [680531] <-- 250-SIZE 28708746 [680531] <-- 250-VRFY [680531] <-- 250-ETRN [680531] <-- 250-ENHANCEDSTATUSCODES [680531] <-- 250-8BITMIME [680531] <-- 250 DSN [680531] --> MAIL
[MDaemon-L] Topik seputar SF Update
Semangat Pagi Pak Syafril.. Mohon info... Apakah SF sudah tidak ada update tiap malam? Karena sy baru sadar kalo Notifikasi SF Update terakhir adakah tgl 16/03/17 Setelah itu sy tidak ada Notifikasi lagi. Apa yg perlu sy cek ya pak? Mohon pencerahannya.. thanks, Suzy - Original Message - From:To: Sent: Thursday, March 16, 2017 4:08 AM Subject: SF Update: bb.ptbmi.com - Thu, 16 Mar 2017 04:08:40 +0700 - MDaemon has performed a spam filter update to better protect your MDaemon mail system from unwanted spam - --- Date/Time of Spam Filter update --- Thu, 16 Mar 2017 04:08:40 +0700 - Update result - Success -- Spam Filter files added/edited -- # UPDATE version 1786640 include updates_spamassassin_org/10_default_prefs.cf include updates_spamassassin_org/10_hasbase.cf include updates_spamassassin_org/20_advance_fee.cf include updates_spamassassin_org/20_aux_tlds.cf include updates_spamassassin_org/20_body_tests.cf include updates_spamassassin_org/20_compensate.cf include updates_spamassassin_org/20_dnsbl_tests.cf include updates_spamassassin_org/20_drugs.cf include updates_spamassassin_org/20_dynrdns.cf include updates_spamassassin_org/20_fake_helo_tests.cf include updates_spamassassin_org/20_freemail.cf include updates_spamassassin_org/20_freemail_domains.cf include updates_spamassassin_org/20_freemail_mailcom_domains.cf include updates_spamassassin_org/20_head_tests.cf include updates_spamassassin_org/20_html_tests.cf include updates_spamassassin_org/20_imageinfo.cf include updates_spamassassin_org/20_mailspike.cf include updates_spamassassin_org/20_meta_tests.cf include updates_spamassassin_org/20_net_tests.cf include updates_spamassassin_org/20_pdfinfo.cf include updates_spamassassin_org/20_phrases.cf include updates_spamassassin_org/20_porn.cf include updates_spamassassin_org/20_ratware.cf include updates_spamassassin_org/20_uri_tests.cf include updates_spamassassin_org/20_vbounce.cf include updates_spamassassin_org/23_bayes.cf include updates_spamassassin_org/25_accessdb.cf include updates_spamassassin_org/25_antivirus.cf include updates_spamassassin_org/25_asn.cf include updates_spamassassin_org/25_dcc.cf include updates_spamassassin_org/25_dkim.cf include updates_spamassassin_org/25_hashcash.cf include updates_spamassassin_org/25_pyzor.cf include updates_spamassassin_org/25_razor2.cf include updates_spamassassin_org/25_replace.cf include updates_spamassassin_org/25_spf.cf include updates_spamassassin_org/25_textcat.cf include updates_spamassassin_org/25_uribl.cf include updates_spamassassin_org/30_text_de.cf include updates_spamassassin_org/30_text_fr.cf include updates_spamassassin_org/30_text_it.cf include updates_spamassassin_org/30_text_nl.cf include updates_spamassassin_org/30_text_pl.cf include updates_spamassassin_org/30_text_pt_br.cf include updates_spamassassin_org/50_scores.cf include updates_spamassassin_org/60_adsp_override_dkim.cf include updates_spamassassin_org/60_awl.cf include updates_spamassassin_org/60_shortcircuit.cf include updates_spamassassin_org/60_txrep.cf include updates_spamassassin_org/60_whitelist.cf include updates_spamassassin_org/60_whitelist_dkim.cf include updates_spamassassin_org/60_whitelist_spf.cf include updates_spamassassin_org/60_whitelist_subject.cf include updates_spamassassin_org/72_active.cf include updates_spamassassin_org/72_scores.cf include updates_spamassassin_org/73_sandbox_manual_scores.cf include updates_spamassassin_org/local.cf include updates_spamassassin_org/regression_tests.cf -- --MDaemon-L-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1
[MDaemon-L] Cara melakukan renewal SecurityPlus dengan file *.key
On 16/05/17 06:53, Muhammad Rosyad wrote: > Bagaimanakah cara untuk melakukan renewal securityplus saat ini? > > Karena pasca pembelian lisensi software tersebut, kami hanya mendapatkan > CD yang didalamnya terdapat file file *.key. Reseller tidak kasih tahu caranya update License key? Begini caranya: - Dari MDconfig GUI masuk ke menu Help | Register your Alt-N Product | Securityplus. - Isikan license key baru di kolom yang disediakan lalu klik "apply". Tahun ini adalah tahun terakhir melakukan update dengan cara itu, kedepan License Key akan otomatis terupdate untuk semua produk Alt-N jika sudah menggunakan MDaemon versi 14.0.x keatas. -- syafril --- Syafril Hermansyah MDaemon-L Moderators, running MDaemon 17.0.1-64 Beta RC2, SP 5.1-64 Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. I am who I am today because of the mistakes I made yesterday. --- The Prolific Penman -- --MDaemon-L-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1
[MDaemon-L] Cara melakukan renewal SecurityPlus dengan file *.key
Dear Pak Syafril, Bagaimanakah cara untuk melakukan renewal securityplus saat ini? Karena pasca pembelian lisensi software tersebut, kami hanya mendapatkan CD yang didalamnya terdapat file file *.key. Mohon bantuannya. Terimakasih. Salam, Rosyad -- __ Disclaimer : __ This message is intended for the lawful recipient(s) explicitly stated in above only. It may contain confidential information prohibited for any Unauthorized use by any party other than the lawful addressee. The message, information and statement expressed herein should also be legally privileged for the lawful recipient(s). If you are not the intended recipient(s) or person responsible for delivering it to the intended recipient(s), you must therefore be notified not to copy, print, distribute or take any action in reliance on it, directly or indirectly. __ Please consider *ENVIRONTMENT* before PRINTING this email . -- --MDaemon-L-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1
[MDaemon-L] Efek Ransomware
On 15/05/17 13:49, Asep Yuliyana wrote: > untuk list port saya mencintek ke > sini > http://www.altn.com/Support/KnowledgeBase/KnowledgeBaseResults/?Number=KBA-02275 > ada yang perlu di hapus tidak Pak? Tidak perlu diubah kalau port-2x itu sesuai dengan yang dipakai (active) di MDaemon Anda. http://mdaemon.dutaint.co.id/mdaemon/17.0/index.html?default-domain-and-servers_ports.htm -- syafril --- Syafril Hermansyah MDaemon-L Moderators, running MDaemon 17.0.1-64 Beta RC2, SP 5.1-64 Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon. Learning is not child's play; we cannot learn without pain --- Aristotle -- --MDaemon-L-- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server. Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1