GFI MailDefense Suite

SpamRazer™: an Additional Anti-spam Engine
The latest version of GFI MailEssentials includes a new anti-spam engine, SpamRazer, which provides a second layer of protection. It has been designed for ease-of-use and, due to frequent updates, SpamRazer needs no tweaking to be fully effective in filtering the latest spam attacks such as NDR spam, CNN spam, MSNBC spam and many more. Not only will administrators benefit from out-of-the-box filtering but also they will gain protection from each new attack without the need to tweak GFI MailEssentials. With SpamRazer filtering, IP reputation filtering, Bayesian filtering and other advanced anti-spam technologies, our spam capture rate is well over 99%. GFI MailEssentials has a market-leading low rate of false positives, ensuring the safety of important emails.

Precise Real-time Dashboard
GFI MailEssentials also ships with a precise, real-time dashboard that gives administrators a graphic view of the software’s status as well as the server’s email flow. Components shown on the dashboard are: the status of key services provided by GFI MailEssentials; statistics of email flow; blocked spam; and also POP2Exchange logging.

Improved Performance
GFI MailEssentials hooks into Exchange server at the SMTP protocol level. Then we can determine if an email is genuine or spam before Exchange server downloads the entire email. We save you bandwidth and processing power.

Built-in Spam Reporting
Administrators can now send a daily report to the users that shows how many emails he or she received and how many emails, identified as spam, were filtered. A snapshot of email traffic will show the end-user how much spam email was successfully captured. The report gives a full list of those emails identified and filtered.

IMPROVED! – Eliminate Hard to Catch NDR, MSNBC and CNN Spam
With spammers controlling tens of thousands of zombie machines, these large botnet armies have become one of the leading sources of spam. The Botnet/Zombie check in GFI MailEssentials eliminates hard to catch attachment spam such as image spam, PDF spam, Excel and ZIP spam. The attachment spam check filters attachment spam quickly, efficiently and with a very low rate of false-positives. GFI MailEssentials uses two anti-spam filter engines and a variety of technologies such as Bayesian Filtering and IP reputation filtering to keep Non-Delivery Report (NDR), CNN spam, MSNBC spam and many more at bay.

Click Here to Read More about Attachment Spam

Click Here to Lean More about NDR Spam

Server-based Anti-spam and Anti-phishing
GFI MailEssentials is server-based and installs on the mail server or at the Gateway, eliminating the deployment and administrative hassle of desktop-based anti-spam and anti-phishing products. A server-side solution will prevent your server message stores from filling up with spam and eliminate the need to train your users on the creation and update of anti-spam rules.

Bayesian Filtering Technology
Bayesian filtering is widely acknowledged by leading experts and publications to be the best way to catch spam. A Bayesian filter uses a mathematical approach based on known spam and ham (valid email). This gives it a tremendous advantage over other spam solutions that just check for keywords or rely on downloading signatures of known spam. GFI Software’s Bayesian filter uses an advanced mathematical formula and a dataset which is custom-made for your installation: Spam data is continuously updated by GFI Software and is automatically downloaded by GFI MailEssentials, whereas the ham data is automatically collected from your own outbound mail. This means that the Bayesian filter is constantly learning new spam tricks; spammers cannot circumvent the dataset used. This results in a 99+% spam detection rate, after the required automated two-week learning period. In short, Bayesian filtering has the following advantages:

• Looks at the whole spam message, not just keywords or known spam signatures
• Learns from your outbound email (ham) and therefore greatly reduces false positives
• Adapts itself over time by learning about new spam and new valid email
• Dataset is unique to your company, making it impossible to bypass
• Multilingual and international.

Read More about Bayesian Filtering - GFI Software White Paper.

Downloads Updates to Spam Profile Database
GFI MailEssentials can download updates to the Bayesian spam profile database from the GFI site, ensuring that it recognizes the latest spam and spamming techniques. GFI maintains the spam profile database by working with a number of spam collection organizations that continually supply spam samples.

Protect Your Users Against the Menace of Phishing Emails
GFI MailEssentials’ anti-phishing module detects and blocks threats posed by phishing emails by comparing the content of the scam with a constantly updated database of blacklisted mails, thereby ensuring all the latest phishing emails are captured. As extra protection, it also looks for typical phishing keywords in every email sent to your organization.

Read More about Phishing

Sort Spam to Users' Junk Mail Folders
We give you the flexibility to choose what to do with spam. You can delete it, move it to a folder, forward the spam mail to a public email address or folder, or send it to individual customizable folders (for example, a junk mail folder) in the end-users’ inboxes. This allows users to easily review mail that has been flagged as spam.

List Server for Newsletter Lists and Discussion Lists
A list server is the best method for distributing company newsletters, since it automates the process of allowing users to subscribe and unsubscribe (required by anti-spam regulations). However, until now, list servers have been expensive and difficult to administer and they did not integrate with Exchange Server. GFI MailEssentials integrates with Exchange and can use Microsoft Access or Microsoft SQL Server as the backend. Both newsletter lists and discussion lists are supported.

Easy Tuning of the Bayesian Engine via Public Folders
Administrators can easily tune the Bayesian engine by dragging and dropping spam or ham to the appropriate public folder. GFI MailEssentials learns from the spam and ham that it picks up from these folders and further improves its spam detection rate. Administrators can control access to this feature through the use of Public Folder security.

Allow Users to Whitelist or Blacklist via Public Folders
GFI MailEssentials allows users to whitelist or blacklist senders simply by dragging and dropping the appropriate mail to a public folder. This gives users more control and reduces administration. Administrators can control access to this feature through the use of Public Folder security.

Email Header Analysis and Keyword Checking
GFI MailEssentials intelligently analyzes the email header and identifies spam based on message field information. It detects forged headers, encoded IPs, spam mutation, spam sent from invalid domains, and more. It also enables you to configure keywords to check for spam using keyword checking.

Third Party DNS Blacklists (DNSBL) Checking
GFI MailEssentials supports DNS blacklists (real time blacklists), which are databases of known spammers. If the sending mail server is on one of those lists, it marks the email as spam. GFI MailEssentials supports popular third party blacklists such as ORDB, SpamHaus, Spamcop and also enables administrators to configure custom RBL servers.

Support for Multiple Third Party SURBL Servers
GFI MailEssentials checks email content against SURBL servers. Administrators can configure multiple SURBL servers, add their own and also define priorities for which server should be checked first.

More information on SURBL can be found at http://www.surbl.org.

Automatic Whitelist Management Reduces False Positives
Whitelists enable you to ensure that email from particular senders or domains are never flagged as spam, permitting more stringent anti-spam rules. GFI MailEssentials includes a patent-pending automatic whitelist management tool, which adds outgoing mail recipients to your whitelist. This greatly reduces false positives, without any need for additional administration. Whitelists can also be built based on domain names, email addresses and keywords.

Instant View of Emails from New Senders
The New Senders feature provides users with an instant view of emails sent from people with whom they've had noprevious contact, thereby helping users to better organize emails in their email client. If we do not identify an email as spam and yet it is not on the whitelist, then the New Senders module can move that email to a user's subfolder, for example, Inbox - NewSenders.

Eliminates Directory Harvesting
Spammers often try to guess recipient addresses by generating multiple random email addresses at a domain; they then send their spam mail to all those addresses. GFI MailEssentials checks the validity of ALL the email addresses included in the mail sent, either via a query to Active Directory or through support for LDAP, and if they are not all valid, marks the mail as spam.

Reports on Spam Filtering and Email Usage
The database-driven reporting engine allows you to create advanced reports on your inbound and outbound email. You can report on the amount of spam filtered and on rules which caught most spam. You can also generate reports on user, domain and mail server usage.

Support for SPF – the Sender Policy Framework
As most of today’s spammers spoof email addresses, it is important to be able to check whether an email is genuine or if it has been sent from a forged sending address. This can be done via the Sender Policy Framework (SPF), which allows users to test whether a particular email originates from its claimed source. We offer one of the first commercial anti-spam solutions to support this framework. Our SPF module automatically checks whether the mail from a particular company was actually sent by its registered mail servers.

For more on SPF, visit http://www.openspf.org.

Set Priorities for Each Anti-spam Module
You can configure which method of capturing spam is to be given priority, and create your own hierarchical list. For example, the administrator can select for our whitelisting anti-spam feature to be applied first to all incoming mail, then Bayesian scanning, and so on.

Company-wide Disclaimer, Header and Footer text
GFI MailEssentials enables you to add disclaimers to the top or bottom of an email. Text and HTML formats are supported. You can include fields and variables to personalize the disclaimer. You can even create multiple disclaimers and associate them with a user, group or domain.

Email Monitoring
The email monitoring feature enables you to keep a central store of the email communications for a particular person or department. By configuring email to be copied to an email address, all email can be stored in an Exchange or Outlook store, making searching much easier.

Email Archiving to a SQL Database
GFI MailEssentials can archive all inbound and outbound mail to a Microsoft SQL Server database. You can search for a particular email or an entire email thread via the included web interface.

For a complete email archiving solution, please check out GFI MailArchiver™ for Exchange.

Seamless Integration with Exchange Server, Lotus Domino and other SMTP Servers
GFI MailEssentials integrates seamlessly with Microsoft Exchange 2000/2003/2007: It installs on the Exchange SMTP service and does not require gateway configuration. Via the SMTP protocol, it also works with Exchange 5.5, Lotus Domino and other popular SMTP/POP3 servers.

Checkmark Certified
GFI MailEssentials holds Checkmark certification from West Coast Labs and more awards.

Support for Virtual Environments
Organizations that are currently using or plan to use virtualization on their network can still install and use a range of GFI products with confidence. GFI MailEssentials supports and runs on the most common virtualization technologies in use, namely VMware, Microsoft Virtual Server and Microsoft Hyper-V.

Other Features:

• Whitelisting of emails by keyword
• Blocking foreign language spam based on character set
• Email monitoring of particular user or department email communications
• Fake non-delivery reports (NDRs)
• Personalized server-based auto replies with tracking number
• POP3 downloader
• Web interface for searching email archive.

GFI MailSecurity™ Features

Virus Checking with Multiple Anti-virus Scanning Engines
GFI MailSecurity uses multiple anti-virus engines to scan inbound email. Using multiple scanners drastically reduces the average time required to obtain the latest virus signature, which means we're quicker to help you to combat the latest threats. The single engine approach will never be fast enough to respond in today's world. Each anti-virus software engine has a different response time to each new virus, depending on where the virus was discovered, and other factors. By using multiple anti-virus engines, we give you a much better chance of having the right software, at the right moment, to combat the latest attck. Since each engine has its own heuristics and detection methods, each one brings a its own strength to your email environment for detecting a particular virus and its variants. Multiple anti-virus engines means better virus protection. GFI MailSecurity give you better virus protection.

Scan Against Trojans and Executables
The GFI MailSecurity Trojan & Executable scanner detects unknown malicious executables by analyzing what an executable does. A trojan (or malicious executable) is software that enters the victim’s computer undetected, granting an attacker unrestricted access to the data stored there. Anti-virus software will not catch trojans (they are not signature based). The Trojan & Executable Scanner takes the approach of using built-in intelligence to rate an executable's risk level. It does this by disassembling the executable, detecting in real time what it might do and comparing its actions to a database of malicious actions. The scanner then quarantines any executables that perform suspicious activities, such as accessing a modem, making network connections or accessing the address book.

Norman Virus Control & BitDefender Virus Engines are Included
GFI MailSecurity is bundled with Norman Virus Control and BitDefender. Norman Virus Control is an industrial strength anti-virus engine that has received the 100% Virus Bulletin award 32 times running. It also has ICSA and Checkmark certification. BitDefender is a very fast and flexible anti-virus engine that excels in the number of formats it can recognize and scan. BitDefender is ICSA certified and has won the 100% Virus Bulletin award and the European Information Technologies Prize 2002. GFI MailSecurity automatically checks and updates the Norman Virus Control and BitDefender definition files as they become available. The GFI MailSecurity price includes updates for one year.

Kaspersky, McAfee and AVG Virus Engines (optional)
To achieve even greater security, you can add the Kaspersky, McAfee and/or AVG anti-virus engines as a third, fourth or fifth anti-virus engine or as a replacement to one of the other engines. Kaspersky Anti-Virus is ICSA-certified and is well known for the unsurpassed depth of its object scanning; for the high rate at which new virus signatures are released; and for its unique heuristic technology effectively neutralizing unknown viruses. Another engine, McAfee, is particularly strong at detecting non-virus attacks such as rogue ActiveX controls. You can also get AVG from GRISOFT. With 15 years of experience in the anti-virus industry, GRISOFT employs some of world's leading experts in anti-virus software, specifically in the areas of virus analysis and detection.

Automatic Removal of HTML Scripts
The advent of HTML email has made it possible for hackers and virus attackers to trigger commands by embedding them in the HTML. GFI MailSecurity checks for script code in the body of an email message disabling these commands before sending the cleaned email on. GFI MailSecurity is the only product to protect you from malicious HTML email using our patented process. We safeguard you from HTML viruses and attacks launched via HTML email.

Email Exploit Detection Engine
GFI's Email Exploit Engine builds on our leading-edge research into email exploits, safeguarding you from any email virus or attack that uses known application or operating system exploits. We would have protected you against the Nimda and Klez viruses when they first emerged, without requiring an update, because they used known exploits. GFI SecurityLabs regularly finds new email exploits, which are automatically downloaded by GFI MailSecurity. GFI MailSecurity is the only email security product to detect email exploits.

Spyware Detection
GFI MailSecurity's Trojan & Executable Scanner can recognize malicious files including spyware and adware. GFI MailSecurity can also detect spyware transmitted by email with the Kaspersky anti-virus engine (optional) which incorporates a dedicated spyware and adware definition file that has an extensive database of known spyware, trojans and adware.

Attachment Checking
GFI MailSecurity's attachment checking rules enable administrators to quarantine attachments based on user and file type. For example, all executable attachments can be quarantined for administrator review before they are distributed to the user. GFI MailSecurity can also scan for information leaks such as an employee emailing a database. You can also choose to delete attachments like .mp3 or .mpg files.

Multiply the Value of GFI MailSecurity with Powerful Reporting
The GFI MailSecurity ReportPack™ is a rich featured reporting companion to GFI MailSecurity. From trend reports for management (ROI) to daily drill-down reports for technical staff; the GFI MailSecurity ReportPack provides you with a full and easy-to-view iunderstanding of your security patterns. Full automation and custom scheduling allow you true install-it-and-forget-it-functionality. The GFI MailSecurity ReportPack offers several default and customizable reports that can be prepasred on an hourly, daily, weekly or monthly basis including:

• Viruses blocked
• Inbound email traffic
• Outbound email traffic
• Total inbound and outbound email traffic
• Processed emails
• Blocked emails
• And more

More Information about the GFI MailSecurity ReportPack

Granular User-based Email Content Policy Enforcement
Using GFI MailSecurity's powerful content policy rules engine, you can configure for policy rules based on user and keywords. We not only help you to quarantine potentially dangerous material for administrator approval, but also help you to scan for offensive content.

GFI MailSecurity enables you to configure a series of search folders (similar to MS Outlook) within the ‘Quarantine Store’; permitting you to manage quarantined emails better and faster. For example, you can set up a folder for emails that were quarantined by virus checking and another for emails quarantined by attachment checking for a particular user; allowing you to prioritize. For example it may be more important in your environment to examine the attachment checking folder first allowing you to quickly approve and forward those emails that are appropriate.

Easy Quarantine Folder Monitoring through RSS feeds
GFI MailSecurity takes advantage of the power of RSS (Really Simple Syndication) feeds to simplify your work as an administrator in keeping an eye on your email quarantine store. Through RSS feeds, you will be informed of all new quarantined objects; eliminating the need to log onto the quarantine store to check for new updates manually.

Web-based Configuration Enables Remote Management
Our web-based configuration allows you to configure and monitor the product as well as to manage quarantined emails remotely from any computer with a browser. That means that you can monitor and manage GFI MailSecurity from anywhere in the world.

Dispatch Quarantined Email using Powerful Moderator Interface
GFI MailSecurity provides several options for moderating quarantined email. Our moderator client software gives you a familiar Windows interface for approving and rejecting email. The web-based moderator allows you to approve and reject emails from anywhere on your network. We will also forward quarantined emails to an email address of your choosing; enabling you to use a public folder to distribute the work of accepting and rejecting email to multiple administrators.

Search inside Quarantined Emails
GFI MailSecurity lets you conduct searches within quarantined email in a number of useful ways. For example, you can search among in or outbound email to or from a particular user. Searches can be carried out based on sender, recipient, the reason for quarantine and more, freeing the administrator from the tedious task of sifting through a folder full of email, one-by-one.

Full Threat Reporting for Quarantined Emails
When an email is quarantined, GFI MailSecurity gives a full report, detailing all threats identified per email.

Checkmark & ICSA Certified
GFI MailSecurity holds Checkmark certification from West Coast Labs and ICSA certification from TruSecure.

Support for Virtual Environments
Organizations that are currently using or plan to use virtualization on their network can still install and use a range of GFI products with confidence. GFI MailSecurity supports and runs on the most common virtualization technologies in use, namely VMware, Microsoft Virtual Server and Microsoft Hyper-V.

Other Features:

• Automatic quarantining of Microsoft Office documents with macros
• Detects attachment extension hiding & renaming
• User-based, flexible rules configuration
• Scans embedded emails
• Lexical analysis

GFI MailDefense Suite работи при описаните по-долу системни изисквания.
Моля, свържете се с нас, ако имате нужда от повече информация.

System Requirements GFI MailEssentials: Hardware

Processor

• Minimum: Intel Pentium or compatible 1 GHz 32-bit processor
• Recommended: x64 architecture-based server with Intel 64 architecture or AMD64 platform.

Memory

• Minimum: 1GB
• Recommended: 2GB RAM

Physical Storage

• Minimum: 500MB for installation, 2GB for execution.
• Recommended: 500MB for installation, 4GB for execution

System Requirements GFI MailEssentials: Software

Supported operating systems

• Microsoft Windows Server 2008 x64
• Microsoft Windows Server 2003 Standard/Enterprise (x86 or x64)
• Microsoft Windows 2000 Server/Advanced Server (SP1 or higher)
• Microsoft Small Business Server 2000 (SP2) / 2003 (SP1)

Mail Servers

• Microsoft Exchange Server 2000 (SP1)
• Microsoft Exchange Server 2003 (SP2)
• Microsoft Exchange Server 2007 with the following roles: Edge Server role, Hub Transport role, Hub Transport role and Mailbox server role
• Lotus Domino 6 or higher
• Any SMTP compliant email server

NOTE: when installing on a Lotus Domino server or an SMTP server, the IIS SMTP and WWW services are required to enable communication between GFI MailEssentials and the mail server.

Other components

• Microsoft .NET Framework 2.0
• Microsoft XML core services: This is required by the GFI MailEssentials reporter to enable anti spam report generation. For UK/US English OS this is installed automatically by GFI MailEssentials. For other languages, this can be downloaded from:
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3144B72B-B4F2-46DA-B4B6-C5D7485F2B42&displaylang=en
  
• Microsoft Virtual Server cluster group resource with a physical disc cluster. This is required ONLY for environments running Microsoft Exchange 2000/2003 clusters.
  
• (OPTIONAL) Microsoft Message Queuing Services: This is required ONLY if list servers are used. MSMQ is used by GFI
  MailEssentials to ensure the reliable running of distributions lists on list servers. For more information on list servers refer to 'List servers' section in the Administration and Configuration manual.

System Requirements GFI MailSecurity: Hardware

The hardware requirements for GFI MailSecurity are:

• Pentium 4 (or equivalent) - 2Ghz
• 512MB RAM
• 1.5 GB of physical disk space

System Requirements GFI MailSecurity: Software

To install GFI MailSecurity you need:

• Windows Server 2008/2003 (x32 or x64 Edition) or Windows 2000 Server/Advanced Server (Service Pack 1 or higher)

NOTE 1: Since the version of Internet Information Services (IIS) included in Windows XP is limited to serving only 10 simultaneous client connections, installing GFI MailSecurity on a machine running Windows XP could affect its performance.

NOTE 2: When installing on Windows Server 2008, the following pre-requisites are required:

• Web Server (IIS) role
• ASP.NET
• Windows Authentication Services
• Microsoft SMTP Services

For more information refer to:
http://kbase.gfi.com/showarticle.asp?id=KBID001596

• Microsoft Exchange Server 2007, 2003, 2000 (SP1), 5.5, 5, 4, or Lotus Notes 4.5 and up, or any SMTP/POP3 mail server

NOTE 1: If you are installing on Microsoft Exchange Server 2007, you need to have either an Edge Server Role, Hub Transport Role or Mailbox Server Role and Hub Transport Server Role installed. GFI MailSecurity cannot be installed on a Microsoft Exchange 2007 machine with only Mailbox Server Role installed.

NOTE 2: When using Small Business Server, ensure you have installed Service Pack 2 for Exchange Server 2000 and Service Pack 1 for Exchange Server 2003.

• Microsoft .Net framework 2.0
• MSMQ – Microsoft Messaging Queuing Service
• Internet Information Services (IIS) (x32 or x64 Edition) – SMTP service and World Wide Web service

NOTE: If installing on a Microsoft Exchange 2007 machine, the IIS SMTP service is not required, since it has its own built in SMTP server.

• Microsoft Data Access Components (MDAC) 2.8

IMPORTANT: Disable anti-virus software from scanning the GFI MailSecurity directories. Anti-virus products are known to both interfere with normal operation as well as slow down any software that requires file access. In fact, Microsoft does not recommend running file-based anti-virus software on the mail server. For more information, please refer to http://kbase.gfi.com/showarticle.asp?id=KBID001559.

IMPORTANT: GFI MailSecurity directories should never be backed up using backup software.

Изпробвайте GFI MailDefense Suite безплатно!

• GFI MailDefense Suite може да се изтегли като безплатна пробна версия - Поискайте я сега!

Допълнителна информация за GFI MailDefense Suite

Ние осигуряваме поддръжка на първо ниво при продажбите и техническата поддръжка на GFI MailDefense Suite. При нужда предвижваме заявките и към отдела за поддръжка на производителя.

• Искате още информация за GFI MailDefense Suite? - Свържете се с нас!
• Вече имате GFI MailDefense Suite, но е възникнал технически проблем? - Получете техническа поддръжка!

Останете в постоянна връзка с нас

• Абонирайте се за новини по имейл (обикновено до 2 пъти месечно)
• Абонирайте се за новини по RSS
• Последвайте ни в Twitter
• Присъединете се към групата ни във Facebook