Q: Does the OpenSSL (Heartbleed) CVE-2014-0160 security vulnerablitiy affect my SecurityGateway server?
A: SecurityGateway does not use OpenSSL to provide SSL/TLS support.
No versions of SecurityGateway are affected by this vulnerablitiy.
Q: Can I relay mail messages through SecurityGateway?
A: When a message arrives that is neither to nor from a local domain, SecurityGateway is being asked to deliver - known as relaying - the message on behalf of some third party. SecurityGateway does not allow indiscriminate open relaying. Spammers often exploit open relay servers to hide their tracks, and therefore relaying mail indiscriminately could result in your IP address being blacklisted by one or more DNSBL services.
There is an option available to relay messages if they are neither to nor from one of your domains but are being sent by one of your domain mail servers. This option is disabled by default. To enable it:
- Log into the SecurityGateway administration website with a global administrator account
- Click Security
- Locate the Anti-Abuse section
- Click Relay Control
- Locate the Mail relaying section
- Click the box beside ...unless sent from domain mail server under This server does not 'relay' messages...
- Click Save
Q: Does SecurityGateway run under Internet Information Server (IIS), Apache, or other third-party webservers?
A: Not at this time. We have this on our wishlist for a future version of SecurityGateway. There is currently no time frame for when it will be supported.
Q: Are mailing list addresses that are hosted on my domain mail server treated as users by SecurityGateway, and therefore count toward the number of users allowed by my software subscription?
A: Yes, mailing lists are a valid recipient, and therefore are counted as a SecurityGateway user.
Q: Can SecurityGateway work in front of MDaemon?
A: Yes it can, as well as in front of Microsoft Exchange or any other SMTP mail server. SecurityGateway uses standard SMTP commands to communicate with the servers setup 'behind it', so any server capable of understanding SMTP can use SecurityGateway.
Q: What is Sieve?
A: Sieve is a language that can be used to create filters for electronic mail. The language is an open standard, defined in RFC 3028 and RFC 5228. As Sieve is not tied to any one product or architecture, administrators have access to a large library of existing scripts.
SecurityGateway makes extensive use of Sieve scripts:
Q: What is the difference between global administrators and domain administrators in SecurityGateway?
A: SecurityGateway has support for two types of administrators: global administrators and domain administrators. Global administrators have access to the settings and database records for every domain configured on the server, whereas domain administrators can only access information regarding the domain or domains that they are specifically allowed to administer.
Global administrators also have access to certain server-wide settings, such as data-retention rules, and security features such as dynamic screening, tarpitting, and IP shielding.
Note that domain administrators can have control of more than one domain.
- System Generated - The core functionality of SecurityGateway is implemented by these scripts. When a configuration change is made via the administrative interface, the appropriate script is modified. System generated scripts are read only, and can only be modified via the appropriate configuration page.
- User Defined - Global administrators may create their own Sieve scripts to customize SecurityGateway to suit their needs. SecurityGateway’s implementation of Sieve includes the base language, several standard extensions outlined in RFCs, and custom extensions specific to SecurityGateway.
Q: Will SecurityGateway cease to run when my subscription expires?
A: If the subscription is not renewed, the product will continue to allow the flow of email but the primary security features will be disabled until the key is renewed.
Q: How do I enter my SecurityGateway registration key?
- Log into the SecurityGateway administration website using a global administrator account
- Click on Setup / Users in the bottom-left.
- Click on Registration at the bottom of the list on the left-hand side.
- Input the registration key you received from our sales department in the SecurityGateway Registration Key field
- Click Save
Q: How do I reset my SecurityGateway password if I forget it?
A: On the login page for the SecurityGateway server, you should see a button labeled 'Forgot Password', just to the right of the 'Sign In' button. Click on it, and the password for your account will be emailed to your email address.
If you cannot access the email address in question, please contact your system administrator to manually change the password on your SecurityGateway account.
Q:How large can SecurityGateway message database get before performance becomes an issue?
A: As the database approaches 5 million message records, performance may become an issue. If this is where your database is, consider tweaking your settings under Setup | Data Retention from the SecurityGateway dashboard.