This month, as well as the usual bundle of bug fixes and minor improvements, we’ve added the possibility to block the potential unwanted attachments separately for delivery and submission flows and we’ve created Hosted Cloud regional SPF hostnames.
We’ve updated all of our control panel integrations to work with the latest upstream versions – cPanel, Plesk, DirectAdmin, WHMCS, and Zimbra.
This month, as well as the usual bundle of bug fixes and minor improvements, we’ve made it possible to include shared mailboxes in “all mailbox” Email Scout Reports (ESRs) and made the timestamp filter in ESRs far less confusing.
Over the last few months, we’ve released several new features, including:
- Faster conversion of mailboxes to aliases
- Easier transfer of domains between admins
- Inline image loading in message preview
- Splunk integration without need to use the remote syslog functionality
- Basic sensitive data protection
In 2014, we introduced an app for Android and iOS that allowed email users to do basic quarantine management (e.g. view quarantined messages and release them). Over the last few years, app usage has significantly decreased, and the indications are that the apps are not providing much value to partners or users.
The Android app was quietly retired a while ago, when Google deployed some changes to the Play Store. The iOS app stopped working a few weeks ago when we introduced some new security improvements.
We have decided to discontinue the app. The iOS app will be removed from the App Store soon – while it will still be available on iPhones that already have the app, we will not be fixing the issue recently introduced, so it should be removed, and the normal control panel interface used instead.
At this time, we do not have plans to develop a new Android, iOS, or iPadOS app. If you have opinions about this, we’d love to hear from you – please reach out to your account manager.
Note that the app is (and always has been) open-source. You’re welcome to update the app yourself if you’d like to have a custom one. Note that this will at minimum require changing the authentication mechanism, and the way that messages are accessed (to either our newer API, or directly via IMAP).
There are three upcoming changes that you should be aware of, and may require you to update your servers and/or integrations.
SMTP AUTH must use TLS (Outgoing Filter, HC & LC)
In May, we will start requiring all SMTP AUTH connections (ie. the outgoing filter where you use a username and password, rather than authorising all connections from an IP) to use TLS. This applies to both SpamExperts Hosted Cloud and SpamExperts Local Cloud. Using TLS ensures that anyone that has access to your network traffic is unable to read the SMTP AUTH credentials. If you are not already using TLS, please make that change as soon as possible.
Removing support for HTTP, adding HTTP Redirect (Control Panel & API HC & LC)
Later this year, we will be removing support for accessing both the control panel and the APIs using plain (unencrypted) HTTP. All HTTP requests will respond with a standard “301” redirect response to the HTTPS version. If you are not already using HTTPS requests, we recommend that you change to do so as soon as possible. While most software will automatically follow redirects, you may need to take particular care with any custom API integrations you have created.
We will provide specific dates for when this change will go live closer to the time, but we strongly recommend changing to only use HTTPS as soon as you can.
Hosted Cloud IP Change (LDAP Sync & Authorisation, Continuity)
The IP addresses used to do LDAP authorisation, LDAP syncing, and send messages through the “Continuity” feature of the app has changed. The new IP addresses are 184.108.40.206 and 2001:978:2:6::20:10 – login.antispamcloud.com (and similar names) resolve to these new addresses, but if you have the IP addresses in your firewall, you will need to replace the old addresses (220.127.116.11 and 2001:1af8:4500:a034:101::2) with the new ones.
This change is effective as of Sunday the 17th of April 2022. We apologise that we missed informing you of this change in advance.
We’ve updated all of our control panel integrations to work with the latest upstream versions – CloudBlue, cPanel, Plesk, DirectAdmin, WHMCS, and Zimbra.
We’re pleased to announce the latest updates to SpamExperts Hosted Cloud and Local Cloud. In this update, we have a large language update, are continuing to increase security, and have several bug fixes.
We’re continually working to make it easier to onboard to SpamExperts Hosted Cloud and maintain the configuration. One piece of feedback we get is that it’s difficult to manage the large number of IP addresses that filtered incoming mail will come from – configuring the firewall when first adding a domain, and then managing the firewall to handle any updates. While using the delivery.antispamcloud.com hostname ensures that you always have the latest list, we understand that having a large list is inconvenient.
We’ve cut the number of IP addresses by more than 95%, so delivery.antispamcloud.com will now only load 14 IP addresses (and if you can’t use delivery.antispamcloud.com for some reason, you only have to enter 14 addresses into your firewall).