General
| Influence Axigen’s future product evolution — get early access to new features mockups, prototypes, and early previews and tell us your opinion. Join our product community newsletter |
42 results found
-
Hide Received header from authenticated messages
Please consider to implement an option that will allow Axigen to hide (like not include) 'Received' header from the sent messages which are received through authenticated connections (for example through SMTP-IN or WEBMAIL services).
5 votes -
Option to deactivate 2FA while accessing webmail service from internal network
Even though 2FA adds security, sometimes it is annoying while accessing webmail services from internal networks. Disabling this feature if you are accessing within the organization be helpful for scenarios where users are not allowed to carry mobile in the production environment.
4 votes -
Clustering support with auto-failover
Currently in a clustered environment we have to following situation:
If a backend-node goes down, all mailboxes mounted there are not reachable anymore.
If I use a shared storage where mailboxes are located physically it would be technically possible
the remaining nodes do not mount that existing mailboxes mount mailboxes which were located on the failing node.4 votes -
AARCH64 and or ARM support in general
Arm support, this is needed, 32Bit linux and or just ARM, it is a requirement in 2021 / almost 2022, not a option, a requirement, support it.
3 votes -
disclaimer message from outside of the organization
create alert message that comes from an email outside the organization but message appears in the body of the email like Office 365 do
3 votes -
Support for OCSP stapling
OCSP (Online Certificate Status Protocol) stapling is a mechanism that allows a web server to provide information about the validity of its SSL/TLS certificate to clients during the SSL/TLS handshake process.
This mechanism should be used with Axigen mail servers, it would improve security and compliance.
3 votes -
Attachment filtering per Domain
It would be useful if the attachment filtering feature would be available per domain.
Different companies have different policies on which attachments can be processed. (often within the framework of the GDPR rules of the respective companies). (so e.g. no MS Office attachments, executables, image files etc.).
Unfortunately, so far this cannot be mapped.
3 votes -
Please add DANE support
DANE is designed to frustrate mail traffic snooping by requiring the use of TLS encryption wherever possible during transport. Although we strongly recommend the implementation of SPF, DKIM and DMARC, DANE is entirely separate from those three standards. While SPF, DKIM and DMARC provide for the authentication and authorisation of an e-mail message's sender and sending host (at the SMTP-protocol level), DANE focuses on the security (confidentiality) of the transport (at the StartTLS-connection level).
3 votes -
Sieve filters/script extensions
Please add support for the following use and may be other usable sieve extensions:
"Move the mail to a folder and if this folder, including subfolders, does not exist, create it (them) first."
a) new tag :create for the action/extension fileinto
b) the date extension - RFC5260
c) the variables extension - RFC5229To allow filtering like this - https://doc.dovecot.org/configuration_manual/sieve/examples/#archiving-a-mailinglist-by-date
2 votes -
SPF Whitelisting
Most mailing lists now implement the Sender Rewriting Scheme to ensure compatibility with SPF and DMARC etc.
However, not all do. If a mailing list forwards e-mail from a domain with an SPF record without rewriting the sender, then the e-mail whilst legitimate will fail the SPF checks.
I've already submitted a proposal to implement moving the e-mail to the Axigen quarantine if it fails SPF rather than reject it outright. In this way e-mails from legitimate maillists which aren't compatible with SPF can be detected. However, in order to allow receipt of e-mails it would also be necessary to…
2 votes -
Detailed logging of the transfer of letters from folder to folder by the user.
Dovecot has a plugin "Mail Logger plugin". He can log copy/move/del operations and will log lines like
imap(user): copy -> Trash: uid=908, msgid=123.foo@bar
It makes it possible to know exactly who and how deleted or transferred a letter.2 votes -
Implement notify functionality as described in RFC 5435
Implement notify functionality as described in RFC 5435 in order to notify users when receiving a e-mail message. Notifications can be sent via SMS or another mechanisms
2 votes -
attachment blocking
We want to skip certain incoming domains/email address from checking attachment blocking. We want Axigen to skip checking attachment rules for those specific domains/email addresses.
1 vote -
Option to adjust the SMTP-in EHLO response according the domain on that IP number.
Axigen answers on the SMTP-in connect with an EHLO message according the server name.
Have this configurable like the SMTP banner, so different IP numbers can get different external identification. This to have a better externally visible split of multi-domain Axigen handling.
1 vote -
For the filter e-mail system a button according to this rule further rules
For the filter e-mail system a button according to this rule further rules
means not only one rule of an e-mail
1 vote -
Add log entries to the security log for "504 Auth type not supported“
Please consider adding message logging for Code 504 "Auth not supported."
To secure the mail environment there is already the security log where failed logins with code 535 are captured.
Actually we are able to parse this log with helper tools like fail2ban to act on above mentioned 553 failed logins and for example lock attackers out of the system.But, if TLS is enforced prior to the authentication (for example via advanced routing) there is no 553 error message unless the attacker first secures the connection via TLS. Instead, if the attacker tries to send the credentials he will…
1 vote -
Using of Elliptic curve certificate
Using of Elliptic curve certificate in axigen, because we all know the if we use the RSA certifcate 2048 or 4096 for security the more cpu required on same side if we used Elliptic curve certificates we required less cpu utilization in great security.
1 vote -
Update downloadable binaries when there is a patch available
Currently it seems that binaries from download section are not updated when there is a patch available.
What now happens is that customers download the initial version, install it. We have to apply the patches afterwards. This is causing double effort. It would be better to included them in downloadable packages instantly.1 vote -
Add option to keep messages containing calendar events
I would like a user option added to allow keeping the original email when responding to a calendar event. Sometimes a message may have other content that doesn't translate over to the calendar event that the user may want to keep. Thunderbird keeps the message but displays at the top that it contains an event that has already been processed.
1 vote -
Password security
We have observed that some users set their passwords such as $pass$123 or pass@123 etc which matches the required criteria however such password can be guessed easily. There should be some way where we can provide inputs (list of such passwords) to email application so that Axigen server should refrain users from setting it.
1 vote
- Don't see your idea?