date:20170515

[MDaemon-L] Efek Ransomware

2017-05-15 Terurut Topik Asep Yuliyana

>
>
>
>
> Tidak perlu diubah kalau port-2x itu sesuai dengan yang dipakai (active)
> di MDaemon Anda.
>
> http://mdaemon.dutaint.co.id/mdaemon/17.0/index.html?
> default-domain-and-servers_ports.htm
>
>
>
Baik terimakasih Pak.

Regards,
Asep. Y

-- 
--MDaemon-L--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1

[MDaemon-L] Email Rejected

2017-05-15 Terurut Topik Irwan R Jazir

Pagi Pak Syafril,

 

Mohon pencerahannya pak,

Ada email dari customer kami yang tidak masuk dikarenakan ter-reject karena
SPAM Scorenya tinggi, tetapi domainnya (Huawei.com) dan sudah kami masukkan
kedalam Whitelist.

 

Berikut Log SMTP-In nya pak:

 

Mon 2017-05-15 12:08:15: --

Mon 2017-05-15 12:08:20: Session 1784; child 21; thread 2184

Mon 2017-05-15 12:01:56: Accepting SMTP connection from
[45.249.212.187:15411]

Mon 2017-05-15 12:01:56: --> 220 mail.mandau.id ESMTP MDaemon 10.0.2; Mon,
15 May 2017 12:01:56 +0700

Mon 2017-05-15 12:01:57: <-- EHLO szxga01-in.huawei.com

Mon 2017-05-15 12:01:57: --> 250-mail.mandau.id Hello szxga01-in.huawei.com,
pleased to meet you

Mon 2017-05-15 12:01:57: --> 250-ETRN

Mon 2017-05-15 12:01:57: --> 250-AUTH=LOGIN

Mon 2017-05-15 12:01:57: --> 250-AUTH LOGIN CRAM-MD5

Mon 2017-05-15 12:01:57: --> 250-8BITMIME

Mon 2017-05-15 12:01:57: --> 250 SIZE 3500

Mon 2017-05-15 12:01:58: <-- MAIL From: SIZE=32017

Mon 2017-05-15 12:01:58: Performing IP lookup (huawei.com)

Mon 2017-05-15 12:01:58: *  D=huawei.com TTL=(9) A=[45.249.212.124]

Mon 2017-05-15 12:01:58: *  P=010 S=001 D=huawei.com TTL=(1)
MX=[mx5.huawei.com]

Mon 2017-05-15 12:01:58: *  P=020 S=000 D=huawei.com TTL=(1)
MX=[mx3.huawei.com]

Mon 2017-05-15 12:01:58: *  P=020 S=002 D=huawei.com TTL=(1)
MX=[mx4.huawei.com]

Mon 2017-05-15 12:01:58: *  D=huawei.com TTL=(9) A=[45.249.212.124]

Mon 2017-05-15 12:01:58: *  D=huawei.com TTL=(9) A=[45.249.212.124]

Mon 2017-05-15 12:01:58: *  D=huawei.com TTL=(9) A=[45.249.212.124]

Mon 2017-05-15 12:01:58:  End IP lookup results

Mon 2017-05-15 12:01:58: --> 250 , Sender ok

Mon 2017-05-15 12:02:02: <-- RCPT To:

Mon 2017-05-15 12:02:02: Performing DNS-BL lookup (45.249.212.187 -
connecting IP)

Mon 2017-05-15 12:02:02: *  zen.spamhaus.org - passed

Mon 2017-05-15 12:02:02:  End DNS-BL results

Mon 2017-05-15 12:02:02: --> 250 , Recipient ok

Mon 2017-05-15 12:02:10: <-- RCPT To:

Mon 2017-05-15 12:02:10: --> 250 , Recipient ok

Mon 2017-05-15 12:02:13: <-- DATA

Mon 2017-05-15 12:02:13: Creating temp file (SMTP):
c:\mdaemon\queues\temp\md5079157.tmp

Mon 2017-05-15 12:02:13: --> 354 Enter mail, end with .

Mon 2017-05-15 12:02:19: Message size: 29627 bytes

Mon 2017-05-15 12:02:19: Performing DKIM lookup

Mon 2017-05-15 12:02:19: *  File: c:\mdaemon\queues\temp\md5079157.tmp

Mon 2017-05-15 12:02:19: *  Message-ID:
3c67a7167ced73458e331a52aef47c9053faf...@cgkeml506-mbx.china.huawei.com

Mon 2017-05-15 12:02:19: *  Result: neutral

Mon 2017-05-15 12:02:19:  End DKIM results

Mon 2017-05-15 12:02:19: Performing DomainKeys lookup (Sender:
lishuis...@huawei.com)

Mon 2017-05-15 12:02:19: *  File: c:\mdaemon\queues\temp\md5079157.tmp

Mon 2017-05-15 12:02:19: *  Message-ID:
3c67a7167ced73458e331a52aef47c9053faf...@cgkeml506-mbx.china.huawei.com

Mon 2017-05-15 12:02:19: *  Querying for policy: huawei.com

Mon 2017-05-15 12:02:19: *Querying: _domainkey.huawei.com ...

Mon 2017-05-15 12:02:19: *DNS: *  Name server reports domain name
unknown

Mon 2017-05-15 12:02:19: *  Result: neutral

Mon 2017-05-15 12:02:19:  End DomainKeys results

Mon 2017-05-15 12:02:19: Passing message through AntiVirus (Size: 29627)...

Mon 2017-05-15 12:02:19: *  Message is clean (no viruses found)

Mon 2017-05-15 12:02:19:  End AntiVirus results

Mon 2017-05-15 12:02:19: Passing message through Outbreak Protection...

Mon 2017-05-15 12:02:19: *  Message-ID:
3c67a7167ced73458e331a52aef47c9053faf...@cgkeml506-mbx.china.huawei.com

Mon 2017-05-15 12:02:19: *  Reference-ID: fgs=0

Mon 2017-05-15 12:02:19: *  Virus result: 0 - Clean

Mon 2017-05-15 12:02:19: *  Spam result: 1 - Clean

Mon 2017-05-15 12:02:19: *  IWF result: 0 - Clean

Mon 2017-05-15 12:02:19:  End Outbreak Protection results

Mon 2017-05-15 12:02:19: Passing message through Spam Filter (Size:
29627)...

Mon 2017-05-15 12:06:20: *   10 BAYES_99 BODY: Bayesian spam probability is
99 to 100%

Mon 2017-05-15 12:06:20: *  [score: 1.]

Mon 2017-05-15 12:06:20: *  3.2 FH_DATE_PAST_20XX The date is grossly in the
future.

Mon 2017-05-15 12:06:20: *  0.0 HTML_MESSAGE BODY: HTML included in message

Mon 2017-05-15 12:06:20: *  1.8 MIME_BASE64_TEXT RAW: Message text disguised
using base64 encoding

Mon 2017-05-15 12:06:20: *  1.7 LW_STOCK_SPAM4 Yup, its a spam!

Mon 2017-05-15 12:06:20: *  0.1 RDNS_NONE Delivered to trusted network by a
host with no rDNS

Mon 2017-05-15 12:06:20:  End SpamAssassin results

Mon 2017-05-15 12:06:20: Spam Filter score/req: 16.70/14.0

Mon 2017-05-15 12:06:20: Message refused because spam score is too high

Mon 2017-05-15 12:06:20: --> 554 Sorry, message looks like SPAM to me

Mon 2017-05-15 12:08:20: <-- QUIT

Mon 2017-05-15 12:08:20: --> 221 See ya in cyberspace

Mon 2017-05-15 12:08:20: SMTP session terminated (Bytes in/out:

[MDaemon-L] This message is 62 minutes old; it has 0 minutes left in this queue

2017-05-15 Terurut Topik Anjas Wahyu N

Dear, Pak Syafril

user saya ada yang mendapatkan email dari postmaster semacam ini :


From: MDaemon at mail.aksball.co.id [mailto:postmas...@aksball.co.id
]

Sent: Wednesday, May 10, 2017 12:26 PM

To: ti...@aksball.co.id

Subject: WARNING: Message delivery delayed



==

=  Greetings from the MDaemon mail system at mail.aksball.co.id  =
==



The following message:



 Session-ID: 680531 (specific to this delivery attempt)

   Queue-ID: pd9000292.msg

 Message-ID: 001801d2c945$1b016b90$510442b0$@aksball.co.id



has not (as yet) been delivered to the following recipient(s):





despite one or more unsuccessful attempts to do so.



Delivery attempts will continue for up to 48 hours (2 days).  If delivery
fails after that time you will be separately informed.



You do not need to resend the message!



The original message headers follow at the end of this report.  For
information on DSN messages see http://www.altn.com/dsn/.



Please quote the Queue-ID, Session-ID, and Message-ID found above in any
inquiries regarding this message.





=  Session Transcript  =





  [680531] Session 680531; child 0001

  [680531] Parsing message <\pd3582898.msg>

  [680531] *  From: ti...@aksball.co.id

  [680531] *  To: anatasia.pu...@sjnk.co.id

  [680531] *  Subject: aks shipment lokal

  [680531] *  Size (bytes): 1489285

  [680531] *  Message-ID: <001801d2c945$1b016b90$510442b0$@aksball.co.id>

  [680531] *  Route slip host: sjnk.co.id

  [680531] *  Route slip port: 25

  [680531] Resolving MX record for sjnk.co.id (DNS Server: 8.8.8.8)...

  [680531] *  P=010 S=000 D=sjnk.co.id TTL=(14) MX=[mx2.dnet.net.id]

  [680531] *  P=015 S=001 D=sjnk.co.id TTL=(14) MX=[mx1.dnet.net.id]

  [680531] *  P=020 S=002 D=sjnk.co.id TTL=(14) MX=[mx4.dnet.net.id]

  [680531] Attempting SMTP connection to mx2.dnet.net.id

  [680531] Resolving A record for mx2.dnet.net.id (DNS Server: 8.8.8.8)...

  [680531] *  D=mx2.dnet.net.id TTL=(56) A=[203.201.167.5]

  [680531] Attempting SMTP connection to 203.201.167.5:25

  [680531] Waiting for socket connection...

  [680531] *  Connection established 10.0.0.1:53315 --> 203.201.167.5:25

  [680531] Waiting for protocol to start...

  [680531] <-- 220 mx2.dnet.net.id ESMTP

  [680531] --> EHLO mail.aksball.co.id

  [680531] <-- 250-mx2.dnet.net.id

  [680531] <-- 250-PIPELINING

  [680531] <-- 250-SIZE 28708746

  [680531] <-- 250-VRFY

  [680531] <-- 250-ETRN

  [680531] <-- 250-STARTTLS

  [680531] <-- 250-ENHANCEDSTATUSCODES

  [680531] <-- 250-8BITMIME

  [680531] <-- 250 DSN

  [680531] --> STARTTLS

  [680531] <-- 220 2.0.0 Ready to start TLS

  [680531] SSL negotiation successful (TLS 1.2, 1024 bit key exchange, 256
bit AES encryption)

  [680531] SSL certificate is valid (matches mx2.dnet.net.id and is signed
by recognized CA)

  [680531] --> EHLO mail.aksball.co.id

  [680531] <-- 250-mx2.dnet.net.id

  [680531] <-- 250-PIPELINING

  [680531] <-- 250-SIZE 28708746

  [680531] <-- 250-VRFY

  [680531] <-- 250-ETRN

  [680531] <-- 250-ENHANCEDSTATUSCODES

  [680531] <-- 250-8BITMIME

  [680531] <-- 250 DSN

  [680531] --> MAIL

[MDaemon-L] Topik seputar SF Update

2017-05-15 Terurut Topik Suzy Ariyani


Semangat Pagi Pak Syafril..

Mohon info...
Apakah SF sudah tidak ada update tiap malam?
Karena sy baru sadar kalo Notifikasi SF Update terakhir adakah tgl 16/03/17
Setelah itu sy tidak ada Notifikasi lagi.

Apa yg perlu sy cek ya pak?

Mohon pencerahannya..

thanks,
Suzy
- Original Message - 
From: 

To: 
Sent: Thursday, March 16, 2017 4:08 AM
Subject: SF Update: bb.ptbmi.com - Thu, 16 Mar 2017 04:08:40 +0700



-
MDaemon has performed a spam filter update to better protect your MDaemon
mail system from unwanted spam
-

---
Date/Time of Spam Filter update
---
Thu, 16 Mar 2017 04:08:40 +0700

-
Update result
-
Success

--
Spam Filter files added/edited
--
# UPDATE version 1786640
include updates_spamassassin_org/10_default_prefs.cf
include updates_spamassassin_org/10_hasbase.cf
include updates_spamassassin_org/20_advance_fee.cf
include updates_spamassassin_org/20_aux_tlds.cf
include updates_spamassassin_org/20_body_tests.cf
include updates_spamassassin_org/20_compensate.cf
include updates_spamassassin_org/20_dnsbl_tests.cf
include updates_spamassassin_org/20_drugs.cf
include updates_spamassassin_org/20_dynrdns.cf
include updates_spamassassin_org/20_fake_helo_tests.cf
include updates_spamassassin_org/20_freemail.cf
include updates_spamassassin_org/20_freemail_domains.cf
include updates_spamassassin_org/20_freemail_mailcom_domains.cf
include updates_spamassassin_org/20_head_tests.cf
include updates_spamassassin_org/20_html_tests.cf
include updates_spamassassin_org/20_imageinfo.cf
include updates_spamassassin_org/20_mailspike.cf
include updates_spamassassin_org/20_meta_tests.cf
include updates_spamassassin_org/20_net_tests.cf
include updates_spamassassin_org/20_pdfinfo.cf
include updates_spamassassin_org/20_phrases.cf
include updates_spamassassin_org/20_porn.cf
include updates_spamassassin_org/20_ratware.cf
include updates_spamassassin_org/20_uri_tests.cf
include updates_spamassassin_org/20_vbounce.cf
include updates_spamassassin_org/23_bayes.cf
include updates_spamassassin_org/25_accessdb.cf
include updates_spamassassin_org/25_antivirus.cf
include updates_spamassassin_org/25_asn.cf
include updates_spamassassin_org/25_dcc.cf
include updates_spamassassin_org/25_dkim.cf
include updates_spamassassin_org/25_hashcash.cf
include updates_spamassassin_org/25_pyzor.cf
include updates_spamassassin_org/25_razor2.cf
include updates_spamassassin_org/25_replace.cf
include updates_spamassassin_org/25_spf.cf
include updates_spamassassin_org/25_textcat.cf
include updates_spamassassin_org/25_uribl.cf
include updates_spamassassin_org/30_text_de.cf
include updates_spamassassin_org/30_text_fr.cf
include updates_spamassassin_org/30_text_it.cf
include updates_spamassassin_org/30_text_nl.cf
include updates_spamassassin_org/30_text_pl.cf
include updates_spamassassin_org/30_text_pt_br.cf
include updates_spamassassin_org/50_scores.cf
include updates_spamassassin_org/60_adsp_override_dkim.cf
include updates_spamassassin_org/60_awl.cf
include updates_spamassassin_org/60_shortcircuit.cf
include updates_spamassassin_org/60_txrep.cf
include updates_spamassassin_org/60_whitelist.cf
include updates_spamassassin_org/60_whitelist_dkim.cf
include updates_spamassassin_org/60_whitelist_spf.cf
include updates_spamassassin_org/60_whitelist_subject.cf
include updates_spamassassin_org/72_active.cf
include updates_spamassassin_org/72_scores.cf
include updates_spamassassin_org/73_sandbox_manual_scores.cf
include updates_spamassassin_org/local.cf
include updates_spamassassin_org/regression_tests.cf






--
--MDaemon-L--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1

[MDaemon-L] Cara melakukan renewal SecurityPlus dengan file *.key

2017-05-15 Terurut Topik Syafril Hermansyah

On 16/05/17 06:53, Muhammad Rosyad wrote:
> Bagaimanakah cara untuk melakukan renewal securityplus saat ini?
> 
> Karena pasca pembelian lisensi software tersebut, kami hanya mendapatkan
> CD yang didalamnya terdapat file file *.key.


Reseller tidak kasih tahu caranya update License key?

Begini caranya:
- Dari MDconfig GUI masuk ke menu Help | Register your Alt-N Product |
Securityplus.
- Isikan license key baru di kolom yang disediakan lalu klik "apply".

Tahun ini adalah tahun terakhir melakukan update dengan cara itu,
kedepan License Key akan otomatis terupdate untuk semua produk Alt-N
jika sudah menggunakan MDaemon versi 14.0.x keatas.



-- 
syafril
---
Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 17.0.1-64 Beta RC2, SP 5.1-64
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

I am who I am today because of the mistakes I made yesterday.
--- The Prolific Penman


-- 
--MDaemon-L--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1

[MDaemon-L] Cara melakukan renewal SecurityPlus dengan file *.key

2017-05-15 Terurut Topik Muhammad Rosyad

Dear Pak Syafril,

Bagaimanakah cara untuk melakukan renewal securityplus saat ini?

Karena pasca pembelian lisensi software tersebut, kami hanya mendapatkan CD
yang didalamnya terdapat file file *.key.



Mohon bantuannya.

Terimakasih.



Salam,

Rosyad

-- 


__

Disclaimer :
__

This message is intended for the lawful recipient(s) explicitly stated in 
above only. 
It may contain confidential information prohibited for any Unauthorized use 
by any party other than the lawful addressee. The message, information and 
statement expressed herein should also be legally privileged for the lawful 
recipient(s).

If you are not the intended recipient(s) or person responsible for 
delivering it to the intended recipient(s), you must therefore be notified 
not to copy, print, distribute or take any action in reliance on it, 
directly or indirectly.
__
Please consider *ENVIRONTMENT* before PRINTING this email .

-- 
--MDaemon-L--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1

[MDaemon-L] Efek Ransomware

2017-05-15 Terurut Topik Syafril Hermansyah

On 15/05/17 13:49, Asep Yuliyana wrote:
> untuk list port saya mencintek ke
> sini 
> http://www.altn.com/Support/KnowledgeBase/KnowledgeBaseResults/?Number=KBA-02275
> ada yang perlu di hapus tidak Pak?


Tidak perlu diubah kalau port-2x itu sesuai dengan yang dipakai (active)
di MDaemon Anda.

http://mdaemon.dutaint.co.id/mdaemon/17.0/index.html?default-domain-and-servers_ports.htm







-- 
syafril
---
Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 17.0.1-64 Beta RC2, SP 5.1-64
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

Learning is not child's play; we cannot learn without pain
--- Aristotle


-- 
--MDaemon-L--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir MD 17.0, SP 5.1.0, OC 4.5.0, SG 4.5.1

[MDaemon-L] Efek Ransomware

[MDaemon-L] Email Rejected

[MDaemon-L] This message is 62 minutes old; it has 0 minutes left in this queue

[MDaemon-L] Topik seputar SF Update

[MDaemon-L] Cara melakukan renewal SecurityPlus dengan file *.key

[MDaemon-L] Cara melakukan renewal SecurityPlus dengan file *.key

[MDaemon-L] Efek Ransomware

7 matches

Site Navigation

Mail list logo

Footer information