RE: [IMail Forum] So Since Imail 8.20 is out..

[Dan Horne]

According to the release notes, the dictionary attack feature is configurable through the registry.  Also, we can now listen on a different port (eg: 587) AND force AUTH on it!   • SMTPD will close a connection after the maximum number of invalid recipients have been reached. This is not turned on by default. To enable this behavior create or edit the following registry key: Key: MaxInvalidRCPTsPerSession Type: DWORD Default: 0 Location: HEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SMTPD32\Parameters If the this value is non-zero, it the server will close the connection if that number of invalid Recipients are received. • Support for additional listen port in SMTPD The following keys will be added by the server and can be modified as desired by the administrator. ExtraPort: DWORD, default 587 EnableExtraPort: DWORD, default 0 (both keys are in CurrentControlSet\Services\SMTPD\Parameters) • Added registry setting to force auth on second port in SMTPD: under ../services/SMTPD32/Parameters Value Name: ForceAuthOnExtraPort Value Type: DWORD Default Value: 1 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dan Horne Sent: Wednesday, April 27, 2005 4:40 PM To: IMail_Forum@list.ipswitch.com Subject: RE: [IMail Forum] So Since Imail 8.20 is out.. Having a current SA for Imail Professional, I dl'ed and upgraded to 8.2 and everything seems to be going smooth so far.  I am tailing the mail log now and it is still working, at least.  Declude is still working with it.  I went into Imail Admin and took a look around.  There's a min and max threads in the SMTP advanced properties now, testament to the new multithreaded SMTP engine.  There are new tabs in the IP-ful hosts for White Lists and Attachment Blocking.  New AntiSpam tabs include SPF, and Broken MIME Headers.  Naturally, I went in and disabled all of it, since IMgate and Declude are pretty handy at that sort of thing <grin>.    Nothing that I saw was changed ifrom my original configuration.  Nothing that was disabled got magically re-enabled.   New features were enabled by default, except SPF and Attachment Blocking (was enabled, but all items were de-selected by default).  The thing I was interested in was the Dictionary attack feature that breaks a connection after so many ERRs in a single connection.  I guess that isn't configurable, because there's no place in the GUI to set it.  Not that I need it, but it is really the thing that Imail needs most IMO, a defense against the dictionary attacks that forced me and many others to put up an IMgate box or use BlackIce or some other method of mitigating the extreme loads that Imail was experiencing when it was dealing with the dictionary attacks on its own.   Dan Horne From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Chris Moody Sent: Wednesday, April 27, 2005 4:10 PM To: IMail_Forum@list.ipswitch.com Subject: Re: [IMail Forum] So Since Imail 8.20 is out.. Not I...rebuilding my Imail server does not sound like fun right now. I'll wait for the other guinea pigs...errr people to try it first. ----- Original Message ----- From: Eric Parsons To: IMail_Forum@list.ipswitch.com Sent: Wednesday, April 27, 2005 3:33 PM Subject: RE: [IMail Forum] So Since Imail 8.20 is out.. I am waiting for someone also,  Ran the executable and looks like it creates a new directory structure.  Cancelled the install. From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Travis Rabe Sent: Wednesday, April 27, 2005 2:31 PM To: IMail_Forum@list.ipswitch.com Subject: [IMail Forum] So Since Imail 8.20 is out.. Who will install it first…any takers?