Anti-spam Appliance - Barracuda, MailFoundry, Etc.
Jul 31, 2009
Does anyone have any experience to share concerning these devices?
I'm having some serious spam issues and would like to look into a better approach to preventing this than the typical SpamAssasin solution bundled with cPanel, Plesk and so on. SA seems rather inefficient, needs a lot of training, can get a lot of false positives, tends to break now and then, and so on.
Have any of you used either the Barracuda or the MailFoundry applicances, or even better - compared them first hand? Are there any similar solutions out there, perhaps cheaper/more cost effective in the long run?
$2000-3000+ for the hardware and around $500 a year for an anti-spam solution is a little steep in my opinion. Especially considering the old and cheap hardware for an example MailFoundry uses. How accurate they actually are in terms of false positives is also seemingly debated. MailFoundry promises a near 0 false positive rate, while some user-experiences suggest somewhere between 6-10% - which could represent an issue just as problematic as spam itself. Nobody wants to lose out on important email. To spend such an amount on a device and updates, it certainly needs to be worth it. Is it?
Are there any equally good or better software based solutions out there, that one could for an example use to set up a custom anti-spam server using existing hardware at the DC?
View 14 Replies
ADVERTISEMENT
Apr 24, 2009
i have a ironport and its coming close to my renew, frankly for my 50 and less users its expensive and i end up with a so so of a server.
my goal would be to use a vm based one for power "green" and backups/migration needs.
im runing scalix with clamav/spamass
View 4 Replies
View Related
May 27, 2013
It is possible to have anti-virus and anti-spam enabled by default when we go to "CREATE E-MAIL ADRESS" -> "SPAM FILTER" / "ANTI-VIRUS" is always disabled.
View 13 Replies
View Related
Dec 24, 2007
Does anyone know what are the limits as far as simultaneous connections on a Barracuda 600 Spam Firewall box are?
The data-sheet is elusive to this.
View 8 Replies
View Related
May 14, 2009
We are planing to implement a spam appliance like the mailfoundry for our 60 cpanel servers.
What is the best and easiest way to replace the standard cpanel mx entry in the dns zonefiles with our two new MX entries?
Additionaly we need to enable the option "Always accept mail locally even if the primary mx does not point to this server." for all the dnszonefiles where we use the new MX entries.
The problem is, that some customers are using already own mx entries, therefore we can not change all of them, but only the entries which point to the cpanel server.
Does someone have a script for this, or how would you change this?
View 2 Replies
View Related
May 20, 2014
We want to configure our PPA mail node to send all outbound mail through our spam filtering appliance but don't know where to start.
Reading standard Postfix docs give basic instructions on how to direct a handful of domains through a mail relay but we want to direct every outbound email from all domains through our spam filter.
We also want to ensure that any regular updates to the mail node won't break or undo this config.
View 2 Replies
View Related
Jun 21, 2008
I am running Win2003 server with Plesk 8.3. Antivirus running is F-Prot. Me and my clients have been getting a lot of spam emails and I am looking for suggestions on how to stop them. Plesk seems to provide some options for checking blacklisted spam servers but I was not too satisfied with the result. Maybe I was not looking up the right urls?
So, any suggestions on blocking the spam would be welcome. I am ready to pay for it too...but I am on a very tight budget. A free solution would be the best for me at the moment.
I also used SpamAssasin for a time being but it did not work out to any of my client's satisfaction even after a month's "training" of SpamAssasin.
View 8 Replies
View Related
Jun 14, 2008
I am interested in ASSP as a anti-spam tool and have heard good things, but I have 1 question I can't seem to find an answer too.
With ASSP is there a way to screen image spam like you can with FuzzyOCR? With ASSP do you even need to scan images at all? Because it waits for the sending server to respond for authentication?
I was running MailScanner / SpamAssasin / FuzzyOCR combo with a couple of chron jobs (to sweep fake bounce email out of the mail que for example) with very effective results, but it took forever to tweak all three to reduce server load. MailScanner was breaking webmail randomly so I have it disabled currently so I get a lot more spam.
View 0 Replies
View Related
Oct 4, 2007
We recently had a problem with a mail spammer. He sent over 90,000 emails and had 20,000 in the queue. Is there anyway to possibly stop this as it was really lagging the server bad. So bad the softlayer took it offline for a while...
View 4 Replies
View Related
Jul 22, 2007
where i can buy some cheap spam protection appliance. Right now, we are buying from mailfoundry, but it is a little bit expensive. I send an email to can spam, but i was quoted 18 K anually, to protect 25K emails. Anyone, have a way to buy some cheap anti-spam appliances.
View 14 Replies
View Related
Jul 25, 2009
I thought I should share this among all.
You will find many Anti spam blocker tools available in market. I recently come to know about[url]
. It’s an excellent tool to encrypt your email account if you use to display it on your website.
Generally, spammers uses robots (some kind of crawler) to get email accounts from websites. Once they get it they start selling it to other spammers and will start sending spoofing emails.
This tool will help you to encrypt your email address and stop spam coming from your website
View 0 Replies
View Related
Dec 4, 2008
Does anybody know of any open source Anti Spam gateway for mail servers? I have used MailCleaner and know how it works. Is there any other available?
View 3 Replies
View Related
Nov 20, 2007
i was wondering if there is any other free anti-spam filter other than Spam Assassin that can be used on a VPS account?
View 13 Replies
View Related
Feb 20, 2008
I want to set up a dedicated server for spam and virus filtering (MX)
But i was wondering, is there a good opensource based tool for this?
View 14 Replies
View Related
May 2, 2007
for a server-wide anti-spam solution I can implement on a Linux server. The mail queues are constantly getting backlogged with thousands of messages which bring the servers to a crawl. There are really two issues the solution needs to address.
1) Spam
2) Spam sent to other people that have the from address forged with our clients' email addresses.
We have spam assassin installed for individuals to use, but there's got to be some sort of solution that can clear out the vast majority of the junk before it even gets to the queue.
It probably goes without saying, but the solution needs to be open-source or have a very inexpensive license.
View 5 Replies
View Related
Feb 7, 2007
Seems like I'm having considerable problems with APF's antidos feature. I keep getting legit users banned from my site, and don't know how to stop it (other than disabling antidos altogether, but I guess there should be another way).
I've already set:
TRIG="100"
SF_TRIG="100"
...in the antidos configuration file but I'm still seeing more and more legit IPs getting added to ad.rules. I've read that raising or lowering LN="100" is the other tweak I should try, but there simply is no such value defined in my conf.antidos file.
Another thing I noticed that, although I only got two notification mails telling me about "attackers" blocked by antidos, there are roughly 40 entries in ad.rules. As a matter of fact, I don't understand what antidos is doing there in the first place. Seems like iptables doesn't log to var/log/messages anyway, at least not on my machine - so where is antidos getting those ips from?
View 2 Replies
View Related
Mar 25, 2008
Are there any providers out there that offer Hosted MailFoundry appliances for a monthly price?
View 4 Replies
View Related
Jun 13, 2008
Not strictly a dedi box but it is dedicated hardware.
I have 2 cp servers and around 400 domains. I am looking to buy a mailfoundry box but dont really want to add all them domains manually.
View 4 Replies
View Related
Aug 7, 2007
A little bit excited as the Barracuda is coming soon...
We have 1 forum server, and it's being access internally by all the classrooms, students, teachers, etc. How should I approach this setup? The current hostname for the forum machine is forum... how should I setup the cluster? forum2?
View 0 Replies
View Related
Dec 5, 2007
We currently are using Barracuda solution for our spam filtering for managed hosting clients and a few shared hosting ones that took advantage of our promotion.
However we are now in the situation of the filter dropping the ball and queuing up emails during business hours and are currently looking into two options for replacement as Barracuda support teams is unable to help.
Delay'd email generally isn't an issue but we have some high profile clients who's primary business runs on email and a delay'd email for 12 hours could cost them tens of thousands of dollars.
We are throwing around the idea of deploying our own spam/email filter on a BSD platform or an alternative hardware spam filter. As this will give us more freedom but less enterprise support.
Was wondering what anyone has dealt with that they could give there reviews on. I know there are a handful of similar solutions out there I just want reviews and pro/cons to them as we cannot deploy an untested solution and want to get into the testing stages very soon.
View 10 Replies
View Related
Mar 27, 2008
if it is possible to hide the Barracuda Load Balancer signature in headers ?
If you check here : [url]
or do a telnet 80 to that same FQDN and send "HEAD / HTTP/1.0" + "RETURN" you will be able to see in the headers the server signature (BarracudaHTTP 1.00).
Is there any way to hide this?
View 2 Replies
View Related
Apr 6, 2007
Looking for a firewall appliance to stick before two dell servers that are going into a co-location data center.
Do you guys have any favorite FIREWALL appliances? I am looking at the CISCO PIX 501, because it seems to be the standard, but there are others that do virusscan, and malware scans at the hardware level before it enters the servers which caught my interest.
Such As: ....
View 8 Replies
View Related
Apr 25, 2007
Can anyone recommend an affordable antivirus hardware appliance that can be put in-line between a physical machine acting as a mail server and the switch? I need it only to filter on ONE machine so it would not have to be extremely fast. Spam filtering would be a plus as well. Any recommendations? I am looking for something plug and play.
View 8 Replies
View Related
May 22, 2007
I'm getting a Gateway Server Appliance 5420.
512 MB RAM
2.0 GHz Celeron
40 GB HD
6 Ethernet Ports
LCD Front Display
and it's an appliance like the Cobalts but for security, however I was wondering if anyone knew of a way to just use it as a regular either windows headless server or linux server. Also does anyone know if it's possible to upgrade the processor? Maybe even a Xeon as I know all the other models come with Xeon Processors or do they actually use a seperate motherboard?
View 4 Replies
View Related
May 1, 2008
I have a requirement to bring web-filtering inhouse on our own hardware.
This is to support up to 50 remote sites - I've looked at iron port / barracuda but Im not sure if it can do what is required.
I need each remote site to effectively have a seperate 'account' with the ability for each sites manager to see the traffic just for their site, create users for that site, specify site specific blocks / allows and also monitor which users are browsing which sites.
Does anyone know of a product or application that allows this sort of segmentation? I'm not a big fan of Surf Control (I don't believe it's able to deal with this sort of setup)
The other option is 1 appliance per remote site - but the costs associated with this are probably out of our budget for this project.
This one's an itnerestign one thats been bugging me for a while!
View 1 Replies
View Related
Dec 28, 2007
Google's mini search appliance:
[url]
hardware wise, it's just an out-dated supermicro's mini 1U setup (P8SCT in SC512L chassis, prescott 3G, 2G DDR2, 1x WD 250G) which can be easily upgraded to newer, greener configuration such as PDSMI+ or PDSBL-LN2 board with Conroe/Kentsfield CPU, 4G~8G RAM, even raptor 10k drive.
what do you guys think the market out there for this type of appliance? will updated hardware boots the performance by much?
View 8 Replies
View Related
Jun 12, 2007
One of my potential client is getting DDOS occassionally. According to the DCs-PCCW and Singtel, the attacks come from China mainly and the DDOS used up all the available bandwidth.
I have asked many DC in Hong Kong. Most of them said they will only null route their IPs and wait the DDOS gone. It seems that none of the DC in HK offer any sort of Anti-DDOS solution.
My client don't want their site completely offline every time they got attacked. So, could any professional suggest what we can do?
What I am thinking of is:
1. Getting 2 connection from different bandwidth providers
2. Using Geo DNS: [url]
Then, I can separate all China users by forcing them to use 1 connection. Will this work? Is there any potential problem here?
Also, I am also thinking of using BGP. Will that make us partially visible as well?
View 0 Replies
View Related
Mar 8, 2008
Can you recommend any anti DDOS provider that can help My servers are being attacked by low bandwidth, botnet attack.
View 14 Replies
View Related
Apr 13, 2009
We have 2 servers, one running Windows 2003 Enterprise that hosts a ColdFusion app, and one running Windows 2003 Standard that hosts our SQL database that is used by the CF app. Nothing else runs on them.
Does anyone have any suggestions for anti-virus products that we could use on these? I don't want one of those elaborate and expensive "suite" programs. I just need to protect the boxes.
I use Kaspersky on our individual machines, and I really don't care much for Norton anymore.
View 5 Replies
View Related
Jul 9, 2009
it seems people tell Dos Deflate is the best basic antiddos script and tons of webhosts use it.
I think its ratter old and it doesnt work for anything these days. Why do hosts still run it? And why isnt there a better alternative?
I used Deflate some years ago and I got problems. And tried then after some years again and nothing changed, the same basic old script which counts connections and ban IPs.
The think with Deflate is that if you have a high limit, lets say ban with 150 connections per IPs, its absolutely worthless for attacks, since you are letting already 150 connections per IP.
And if you lower it at least me got with tons of problems banning real visitors. Even over 150 I had complaints about real visitors on a server telling the server blocks him. Dont ask me how someone has 150 connections to a servers but I got complaints from multiples people over the world the 1 month i had it running over a 2 years ago.
I also see a really big problem with it. Allot of ISP share IPs between users. So its really possible you get 200 connections from the same IP and they are different users. Banning an IP based on the connections you can probably shutdown a full IPS and their visitors. I wish there was a better solution but using a high value like 300 or 500 doesnt make sense in a Dos attack. And if you use a low value you start to get into problems.
We agree it will not work with distributed attacks but I dont think it can even work with single attacks since besides connection count it doesnt seem to be any more analisys behaviour.
The way I would make a script like that. Is to check all traffic and IPS all the time. And mark IPs that always access a server ass good ones. The newer the IP the more suspicious. On a attack this way real visitors would still pass but attackers will not as they are new ips. You can also match then the number of times its connecting, how long, etc.
View 2 Replies
View Related
Sep 30, 2009
Over the past number of years there has been an obvious increase in credit card fraud and identity theft.
Our policies have always tried to stay a step ahead but it seems no matter what is done the occasional fraudster manages to squeeze through, costing us a lot of money. At one some point in early 2009, it got as bad as 60% of the orders we received. It ended up eating a LOT of our time just to go through each order and verify them as best we could.
What methods do you use to fight fraud?
I'll start with some of the things we do.
- Require CVV code on the credit card
- We call the customer's telephone number and verify with them. - Verify the telephone number matches the region of the address they provide
- Require the CC issuing Bank's name and number
- We often require the customer to fax a signed credit card authorization form
- GeoIP matches location of the address in the order
Obviously the big challenge is proving that the person placing the order is the actual owner of the card. I've received the correct CVV, spoken with the customer on the phone number, had the phone number match the region... non-US so I wasn't able to verify their telephone details with the issuing bank. Had the GeoIP match and still found out it was fraud.
On a side note: Am I the only one that feels banks and those issuing credit cards need to take more responsibility for a system that's clearly broken? Even after going through the process above, it can still be fraud with a chargeback issued. In those cases, the company loses the money they made, pay a fee to the payment provider, lost time for Sales Reps and Tech Reps, and of course they lose money on hardware, electricity and bandwidth.
View 14 Replies
View Related