Pak Syafril.
Jika saya run Analiyse di MDaemon Health check hasilnya banyak Sekali setting
status yang tidak sesuai rekomendasi ,Apakah kita perlu ikuti rekomendasi ?
Refuse to accept messages that are infected with viruses
No Yes
Security | Content Filter | AntiVirus
When viruses are detected
delete the entire message quarantine the entire message
to Security | Content Filter | AntiVirus
Add warning to top of message body if infected
No Yes
Security | Content Filter | AntiVirus
Add warning to top of message body if not scanned
No Yes
Security | Content Filter | AntiVirus
IWF content should be
accepted for filtering blocked in real time
Security | Outbreak Protection
SPF/DKIM approved mail is exempt from OP processing
Yes No
Security | Outbreak Protection
Do not allow message relaying unless sent via authenticated SMTP session
Yes No
Security | Security Settings | Security Settings | Relay Control
Do not allow message relaying unless sent from gateway a user
Yes No
Security | Security Settings | Security Settings | Relay Control
Do not apply IP Shield to Trustes IPs
No Yes
Security | Security Settings | Sender Authentication | IP Shield
Check FROM header address against IP Shield
No Yes
Security | Security Settings | Sender Authentication | IP Shield
Enable the dedicated SSL ports for SMTP, IMAP, POP3 servers
No Yes
Security | Security Settings | SSL & TLS | MDaemon
SMTP server requires SSL on MSA port
No Yes
Security | Security Settings | SSL & TLS | MDaemon
Honor p=reject when DMARC produces a 'FAIL' result
No Yes
Security | Security Settings | Sender Authentication | DMARC Verification
Filter messages which fail the DMARC test into spam folders
No Yes
Security | Security Settings | Sender Authentication | DMARC Verification
Send DMARC aggregate reports
No Yes
Security | Security Settings | Sender Authentication | DMARC Reporting
Refuse to accept messages if 'From' is incompatible with DMARC
No Yes
Security | Security Settings | Sender Authentication | DMARC Settings
SMTP EHLO/HELO delay (in seconds)
0 10
Security | Security Settings | Other | Tarpitting
Enable Spambot Detection
No Yes
Security | Security Settings | Screening | Spambot Detection
Send heuristic results to clients
Yes No
Security | Spam Filter | Spam Filter | Spam Filter
Send 501 and close connection if no PTR record exists
Yes No
Security | Security Settings | Security Settings | Reverse Lookups
PTRExemptAUTH
Yes
In D:\MDaemon\App\MDaemon.ini: [ReverseLookup] PTRExemptAUTH
Send 501 and close connection if no PTR record match
Yes No
Security | Security Settings | Security Settings | Reverse Lookups
PTRExemptAUTH
Yes
In D:\MDaemon\App\MDaemon.ini: [ReverseLookup] PTRExemptAUTH
HELO/EHLO: Refuse to accept mail if a lookup returns 'domain not found'
Yes No
Security | Security Settings | Security Settings | Reverse Lookups
HELO/EHLO: Refuse to accept mail if a lookup returns 'domain not found and send
501 error code Yes No
Security | Security Settings | Security Settings | Reverse Lookups
HELO/EHLO: Refuse to accept mail if a lookup returns 'domain not found and then
close the connection Yes No
Security | Security Settings | Security Settings | Reverse Lookups
HELO/EHLO: Exempt authenticated sessions
Yes No
Security | Security Settings | Security Settings | Reverse Lookups
Refuse to accept mail if a lookup returns no MX records
Yes No
Security | Security Settings | Security Settings | Reverse Lookups
When verification produces a 'FAIL' result: send 550 error code
Yes No
Security | Security Settings | Sender Authentication | SPF Verification
Enable DNS-BL queries
No Yes
Security | Spam Filter | DNS-BL | Hosts
Verifier honors body length tag
No Yes
Security | Security Settings | Sender Authentication | DKIM Settings
Verifier require signatures to protect the subject header
Yes No
Security | Security Settings | Sender Authentication | DKIM Settings
Sign eligible outbound messages using DKIM
No Yes
Security | Security Settings | Sender Authentication | DKIM Signing
Do not apply punitive DMARC policy to messages from certified sources
Yes No
Security | Security Settings | Sender Authentication | VBR Certification
Do not apply spam filter to messages from certified sources
Yes No
Security | Security Settings | Sender Authentication | VBR Certification
Insert certification data into outgoing messages
No Yes
Security | Security Settings | Sender Authentication | VBR Certification
SMTP MAIL address must exist if it uses a local domain unless sent via
authenticated SMTP session No Yes
Security | Security Settings | Security Settings | Relay Control
SMTP MAIL address must exist if it uses a local domain unless sent from a
trusted ip No Yes
Security | Security Settings | Security Settings | Relay Control
SMTP RCPT address must exist if it uses a local domain unless sent via
authenticated SMTP session Yes No
Security | Security Settings | Security Settings | Relay Control
SMTP RCPT address must exist if it uses a local domain unless sent from a
trusted ip No Yes
Security | Security Settings | Security Settings | Relay Control
Apply IP Screen to MSA connections
No Yes
Security | Security Settings | Screening | IP Screen
Drop connection after EHLO
No Yes
Security | Security Settings | Screening | Host Screen
Enable APOP & CRAM-MD5
Yes No
Setup | Server Settings | Servers
Refuse to accept message if an error occurs during SMTP scanning
Yes No
Security | Spam Filter | Spam Filter | Spam Filter
Forwarding to blacklist@ updates blacklist contacts
No Yes
Security | Spam Filter | Spam Filter | White List (automatic)
Do not filter mail from local sources
Yes No
Security | Spam Filter | Spam Filter | Settings
HTTP and HTTPS
Yes No
Setup | Web & IM Services | MDaemon Webmail | SSL and HTTPS
HTTP redirected to HTTPS
No Yes
Setup | Web & IM Services | Webmail | SSL and HTTPS
Use HTTP Strict Transport Security for MDaemon Webmail (only for built in Web
Server) No Yes
In D:\MDaemon\WorldClient\WorldClient.ini: [SSL]
UseHttpStrictTransportSecurity
Require IP persistence throughout Webmail session
No Yes
Setup | Web & IM Services | Webmail | Web Server
HTTPS only
Yes No
Setup | Web & IM Services | Remote Administration | SSL and HTTPS
HTTP redirected to HTTPS
No Yes
Setup | Web & IM Services | Remote Administration | SSL and HTTPS
Use HTTP Strict Transport Security for Remote Admin (only for built in Web
Server) No Yes
In D:\MDaemon\WebAdmin\WebAdmin.ini: [SSL]
UseHttpStrictTransportSecurity
Thank You,
Best Regards
Fransiskus Saryono
Technical Manager
PT Pageo Utama
Certified ISO 9001:2008, ISO 14001:2004, OHSAS 18001:2007 and Member of IMCA
-----Original Message-----
From: [email protected] [mailto:[email protected]] On Behalf Of Syafril
Hermansyah ([email protected])
Sent: 11 September 2018 20:12
To: [email protected]
Subject: [mdaemon-l] email selalu masuk spam world client
On 2018-09-11 18:19, Syafril Hermansyah ([email protected]) wrote:
>> Terlampir source emailnya.
>
> Nanti saya lihat lagi kalau sudah pakai desktop email client.
Kalau dari message header terlihat bahwa tindakkan whitelistnya salah,
sesuai dugaan saya sebelumnya.
Sekalipun demikian mestinya message tidak masuk ke spam folder di
webmail karena spam scorenya negatif.
Minta ke user user [email protected] untuk menonaktifkan
spam filter di email clientnya, khususnya yang di mobile device.
--
syafril
-------
Syafril Hermansyah
MDaemon-L Moderators, MDaemon 18.5.0-64 Beta C
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.
You have to learn the rules of the game. And then you have to play
better than anyone else.
--- Albert Einstein
--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia
Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke [email protected]
Henti Langgan: Kirim mail ke [email protected]
Versi terakhir MD 18.0.2, SG 5.5.0
--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia
Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke [email protected]
Henti Langgan: Kirim mail ke [email protected]
Versi terakhir MD 18.0.2, SG 5.5.0
