MDaemon 13.5.x: Detecting and stopping hijacked accounts
Detecting and stopping hijacked accounts requires MDaemon Pro. Dynamic Screening has been improved by adding an option to disable local accounts which try to send more than XX messages in XX minutes. When an account is disabled an email is sent to the postmaster which can be replied to which re-enables the account.
Note, that the account could quickly get disabled again if the message sending continues. Accounts disabled by this process can still accept incoming mail but they can not log in to web mail or web administration and they can not collect or send mail. The intent is to try and recognize and stop a hijacked account so that the postmaster can review the situation and take action. The postmaster account is exempt from this.
- Select Security
- Select Security Settings
- Expand Screening
- Select Dynamic Screen
- Check Accounts may send no more than X msgs in X minutes
- Configure how many messages and within how many minutes you would like Dynamic Screen to trigger
- Check the box for Disable accounts when limit is reached if you wish to disable the account when this feature is triggered.
- Click Apply
- Click OK.