N-able SpamExperts

We’ve updated cPanel integrations to work with the latest upstream versions.

cPanel Stable

• Controlpanel: cPanel v11.108.0.15
• PHP version: 7.4.33
• Addon version: 3.0.96617

cPanel Release

• Controlpanel: cPanel v11.110.0.2
• PHP version: 8.1.16
• Addon version: 3.0.96617

Note: In case the update is not possible using UI, please use the script:

wget -N https://download.seinternal.com/integration/installers/cpanel/installer.sh && bash installer.sh

Please consider the documentation for more details: https://documentation.n-able.com/spamexperts/userguide/Content/Integration/cpanel-addon.htm

This month, as well as the usual bundle of bug fixes and minor improvements, we’ve added the option to skip the welcome message when an Email Scout Report (ESR) is configured, as well as the option to include distribution list in “all mailbox” ESR, and we’ve updated Plesk and Thunderbird control panel integrations.

Optional sending of welcome message when configure Email Scout Report

Over the next four weeks we will be enabling a set of changes for more flexibility when an Email Scout Report is configured.

A new option has been added in the Setup Email Scout Report page to send the welcome message when a new mailbox is detected.

The new option needs to be unchecked to skip the welcome message, which otherwise is sent as before this change.

Optionally Create Email Scout Reports for Distribution List

In this version, a new option is available “Include distribution list” in case you do want to also generate ESRs for those mailboxes. This is visible when the “All mailboxes” checkbox is checked.

Similar with “Include shared mailboxes”, the new option “Include distribution list” needs to be checked to generate ESRs for distribution list using automatic ESRs.

This is only available for new created auto-ESR.

Integrations Update, 2023 Q1

Fix some issues with SpamExperts Add-on for Plesk Extension (v1.2-7).

https://github.com/SpamExperts/plesk-extension/releases/tag/v1.2-7

• Fix get-domain-list status check.
• Update domain/exists response check to avoid warnings.
• Show an error when addAlias fails.

Update Thunderbird Add-on for Spam Reporting (v2.0.0).

Changelog

Since the last major release, we’ve also fixed the following issues: 

• MMA-7855. Adjust database config to increase chances of recovery without leftover files.
• MMA-7698. Add optimizations to the log search to lower memory consumption.
• MMA-7925. Fixed an issue with RUF report not being sent in case the sender’s TXT record on dmarc. * has the “ruf:mailto” without trailing semicolon.
• MMA-7964. Fixed an issue with DMARC reports being sent from invalid sender address.
• MMA-7852. Fixed an issue when the status was not updated for mailboxes ending in dot .test.@example.com.
• MMA-7958. Fixed an issue with Delivery field not properly working when editing multiple ESRs.
• MMA-7948. Fixed ESR issue with missing the validators for the modal fields.
• MMA-7944. Rebuild index got canceled after set period to proper handle the index queue.
• MMA-7774. Add optimizations when expiring logs to lower memory consumption.

We’ve also made the following improvements: 

• MMA-7592. Add “Include shared mailboxes” option when editing Auto ESRs.

This month, as well as the usual bundle of bug fixes and minor improvements, we’ve added the possibility to block the potential unwanted attachments separately for delivery and submission flows and we’ve created Hosted Cloud regional SPF hostnames.

Over the next three weeks we will be enabling a set of changes that all API / HTTP requests will be redirected to HTTPS.
The custom integrations using APIs should make sure that follows redirects.
The recommendation is to update according to the information from Integrations Update, 2022 Q4:
https://blog.spamexperts.com/2022/10/19/integrations-update-2022-q4

We’ve updated all of our control panel integrations to work with the latest upstream versions – cPanel, Plesk, DirectAdmin, WHMCS, and Zimbra.

This month, as well as the usual bundle of bug fixes and minor improvements, we’ve made it possible to include shared mailboxes in “all mailbox” Email Scout Reports (ESRs) and made the timestamp filter in ESRs far less confusing.

In 2014, we introduced an app for Android and iOS that allowed email users to do basic quarantine management (e.g. view quarantined messages and release them). Over the last few years, app usage has significantly decreased, and the indications are that the apps are not providing much value to partners or users.

The Android app was quietly retired a while ago, when Google deployed some changes to the Play Store. The iOS app stopped working a few weeks ago when we introduced some new security improvements.

We have decided to discontinue the app. The iOS app will be removed from the App Store soon – while it will still be available on iPhones that already have the app, we will not be fixing the issue recently introduced, so it should be removed, and the normal control panel interface used instead.

At this time, we do not have plans to develop a new Android, iOS, or iPadOS app. If you have opinions about this, we’d love to hear from you – please reach out to your account manager.

Note that the app is (and always has been) open-source. You’re welcome to update the app yourself if you’d like to have a custom one. Note that this will at minimum require changing the authentication mechanism, and the way that messages are accessed (to either our newer API, or directly via IMAP).

There are three upcoming changes that you should be aware of, and may require you to update your servers and/or integrations.

SMTP AUTH must use TLS (Outgoing Filter, HC & LC)

In May, we will start requiring all SMTP AUTH connections (ie. the outgoing filter where you use a username and password, rather than authorising all connections from an IP) to use TLS. This applies to both SpamExperts Hosted Cloud and SpamExperts Local Cloud. Using TLS ensures that anyone that has access to your network traffic is unable to read the SMTP AUTH credentials. If you are not already using TLS, please make that change as soon as possible.

Removing support for HTTP, adding HTTP Redirect (Control Panel & API HC & LC)

Later this year, we will be removing support for accessing both the control panel and the APIs using plain (unencrypted) HTTP. All HTTP requests will respond with a standard “301” redirect response to the HTTPS version. If you are not already using HTTPS requests, we recommend that you change to do so as soon as possible. While most software will automatically follow redirects, you may need to take particular care with any custom API integrations you have created.

We will provide specific dates for when this change will go live closer to the time, but we strongly recommend changing to only use HTTPS as soon as you can.

Hosted Cloud IP Change (LDAP Sync & Authorisation, Continuity)

The IP addresses used to do LDAP authorisation, LDAP syncing, and send messages through the “Continuity” feature of the app has changed. The new IP addresses are 130.117.251.9 and 2001:978:2:6::20:10 – login.antispamcloud.com (and similar names) resolve to these new addresses, but if you have the IP addresses in your firewall, you will need to replace the old addresses (95.211.160.147 and 2001:1af8:4500:a034:101::2) with the new ones.

This change is effective as of Sunday the 17th of April 2022. We apologise that we missed informing you of this change in advance.