Search found 16 matches

by MikeLim
2015-11-09 07:34
Forum: General discussions
Topic: Reduce RAM usage
Replies: 12
Views: 4722

Re: Reduce RAM usage

This is a 2 x 6 core Xeon (24 logical cores with HT) server with 20 GB RAM and 4 hard disks in RAID 5 configuration. We have no complaints with performance; the issue is with the "out-of-memory" errors due to high (up to 3.46GB) RAM utilisation. Most users have 10 to 20++ GB of mail. When someone se...
by MikeLim
2015-11-09 03:37
Forum: General discussions
Topic: Reduce RAM usage
Replies: 12
Views: 4722

Re: Reduce RAM usage

Just an update. We have increased command threads to 200 and disabled IMAP sort. Have also added a scheduled job to restart the service every 6 hours. We still get a peak of 2.3 GB RAM usage last week, which is an improvement over the 3.4 GB last week. We are seriously thinking of migrating to anoth...
by MikeLim
2015-11-03 15:02
Forum: General discussions
Topic: Reduce RAM usage
Replies: 12
Views: 4722

Re: Reduce RAM usage

Hi all, thanks for the suggestions. Using the latest version of hMailServer, ie. 5.6.4 on MySQL 64-bit 5.6.27. Just realised that 32-bit libMySQL.dll is 5.6.26 and have replaced with 5.6.27. Not using SpamAssasin as we encountered issues with it before. We do use about several DNSBL and a few URIBL....
by MikeLim
2015-11-03 04:19
Forum: General discussions
Topic: Reduce RAM usage
Replies: 12
Views: 4722

Reduce RAM usage

Currently using hMailServer for about 100 persons. Average mailbox size is more than 10 GB. We have configured hMailServer.exe to use more than 2 GB RAM using Explorer Suite as recommended in this forum. Recently, we noticed hMailServer.exe process size increasing, hitting a high of about 3.46 GB :s...
by MikeLim
2015-08-11 15:12
Forum: General discussions
Topic: antivirus recommendation other than clam av?
Replies: 19
Views: 12055

Re: antivirus recommendation other than clam av?

Thanks for the note about Avast for Business. Regarding ClamAV, you can supplement it with additional signatures. We are using https://www.securiteinfo.com/services/improve-detection-rate-of-zero-day-malwares-for-clamav.shtml and http://sanesecurity.com/ . Helps improve malware detection rate and al...
by MikeLim
2015-06-29 16:54
Forum: Feature requests
Topic: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled
Replies: 12
Views: 5859

Re: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled

Fair enough. You havent REALLY explained, though, why you need this. What does having this information give you? How does it help? (By the time you see it autoban would have kicked in anyway). Trends. APT (Advanced Persistent Threats). What account is being used for login attempts? Are these generi...
by MikeLim
2015-06-29 16:25
Forum: Feature requests
Topic: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled
Replies: 12
Views: 5859

Re: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled

The point of me pointing out the AUTOBAN features was to take on this statement: In effect, that looks like you are in other words saying: (a), enabling IMAP and POP3 logging is an overkill (creates log files that are too big). (b), you want to see when invalid attempts have happened, been blocked,...
by MikeLim
2015-06-29 15:54
Forum: General discussions
Topic: SSL install help
Replies: 13
Views: 5530

Re: SSL install help

I've purchased a Comodo SSL Certificate and received the following in a zip file: I opened ports 465 and 993 in windows firewall and router Can you open port 25 to internet? If yes, do the following TCP/IP Port 25/Connection Security : STARTTLS(Optional), select your SSL certificate Open port 25 to...
by MikeLim
2015-06-29 14:45
Forum: Feature requests
Topic: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled
Replies: 12
Views: 5859

Re: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled

Autoban entries will be auto remove after a period and the user name is not logged That is incorrect. The AUTOBAN entry in IP RANGES details the full username that was entered as an attempt to log in (as it it would appear in the LOG file if you had it); The log file gives you no more information (...
by MikeLim
2015-06-29 11:28
Forum: Feature requests
Topic: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled
Replies: 12
Views: 5859

Re: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled

I guess, I am really asking why you think think that email collection (IMAP and POP) from clients is such a security risk that it needs logging? Is it not a case that in the main unless people have your server details anyway, they would be unable to gain access, and having such details doesnt reall...
by MikeLim
2015-06-29 09:31
Forum: General discussions
Topic: PCI compliance failing
Replies: 6
Views: 2780

Re: PCI compliance failing

Thanks MikeLim. I ended up working around it another way, but based on my reading, using port 465 instead of 587 would've kept TrustWave happy (assuming newer ciphers are used). Our staff do login. We just need the encryption to happen before that, and we need TrustWave to be reassured about that. ...
by MikeLim
2015-06-29 05:53
Forum: Feature requests
Topic: Feature Request : Log failed IMAP/POP3 attempts even with logging disabled
Replies: 12
Views: 5859

Feature Request : Log failed IMAP/POP3 attempts even with logging disabled

We enable logging for "SMTP", "Application" and "TCP/IP". Logging allows us to troubleshoot brute-force login attempts. e.g. " 80.147.111.149 " "SENT: 220 mail.company.com" "80.147.111.149" "RECEIVED: EHLO PC07" "80.147.111.149" "SENT: 250-mail.company.com[nl]250-SIZE 51200000[nl]250-AUTH LOGIN[nl]2...
by MikeLim
2015-06-29 05:38
Forum: General discussions
Topic: PCI compliance failing
Replies: 6
Views: 2780

Re: PCI compliance failing

Since your staff not using it for login, disable AUTH LOGIN on port 25. Add "DisableAUTHList=25" to your hMailServer.ini [Settings] section. This is a new feature in 5.6.3 ( https://www.hmailserver.com/changelog/?version=5.6.3 ) See https://www.hmailserver.com/forum/viewtopic.php?f=7&t=28032 As for ...
by MikeLim
2015-06-16 05:26
Forum: Development & alpha discussions
Topic: Is hMailserver vulnerable to Logjam??
Replies: 12
Views: 6333

Re: Is hMailserver vulnerable to Logjam??

it is important issue for all this is a critical issue carry on this topic As far a I am concerned, this issue has been fully explained. Key points : 1) hMailServer default configuration uses 2048-bit DH. Export ciphers are disabled. => not vulnerable. 2) For further protection, disable DH ciphers ...
by MikeLim
2015-05-22 04:42
Forum: Development & alpha discussions
Topic: Is hMailserver vulnerable to Logjam??
Replies: 12
Views: 6333

Re: Is hMailserver vulnerable to Logjam??

My bad.

Should be
So if your hMailserver is not configured to use DH ciphers, your server is NOT vulnerable
by MikeLim
2015-05-21 16:40
Forum: Development & alpha discussions
Topic: Is hMailserver vulnerable to Logjam??
Replies: 12
Views: 6333

Re: Is hMailserver vulnerable to Logjam??

Does anyone know if hMailserver is vulnerable to the Logjam Attack as described at https://weakdh.org/ ? LogJam affects DH ciphers. As per https://weakdh.org/, DH with 512-bit prime is vulnerable. DH with 1024-bit requires "nation-state" computing resources to crack. The recommendation is "If you h...