We don’t use marketing cookies. Functional cookies ensure a smooth performance of our website. If you continue to use our services, you agree to the use of cookies. Data protection at JAM OK

FAQs & Knowledge Base

Welcome to our Knowledge Base. Search or browse through the topics below to find answers to your questions.

Categories: Exchange Server Toolbox | Show all categories

All of our products are being developed in Delphi or C#. Although we use Log4Net with some of the components, they are safe to use, because the reported vulnerability applies to Log4J only.

None of our applications depend on Log4J or any other Java library and are thus not affected by this vulnerability.

This applies to all versions and editions of our applications (TreeSize, SpaceObServer, SpaceObServer WebAccess, HeavyLoad, SmartPOP2Exchange, Exchange Server Toolbox, SpamAssassin in a Box, SpamAssassin for Windows, SmartCallMonitor, SEPA-Transfer, ServerSentinel, and ShellBrowser). It is recommended to always use the latest available versions though to benefit from the latest patches, improvements, and features.

In the Windows command prompt, run the following command:

  • "C:\\Program Files (x86)\\Common Files\\JAM Software\\ClamAVInABox\\rsync\\rsync.exe" --timeout=30 -i  -vv -p -z -t rsync://rsync.sanesecurity.net/sanesecurity/* sanesecuritydbtemp

If the output contains the following error, perform the steps below:

  • fatal error - cygheap base mismatch detected
  1. In the Windows settings navigate to "Windows Security / App & Browser Control / Exploit Protection Settings / Program Settings".
  2. There click on "Add program to customize / Add by program name".
  3. Enter "rsync.exe" and click on "Add".
  4. Under "Force randomization for images (Mandatory ASLR)", select "Override system settings", and then click "Apply".

  • Check for Update
    • TCP and UDP Port 853
    • TCP Port 443
  • ClamAV
    • FreshClam (Signature Updater)
      • TCP Port 53
    • Rsync (SaneSecurity Signature Updater)
      • TCP Port 873
  • SpamAsassin
    • Razor (Regel Updater)
      • TCP Port 2703
    • Querying blacklists (RBLs)
      • TCP and UDP Port 53

This error is caused by missing access rights to a key file. This is located in the folder C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys. You can either change the permissions on the entire folder or check which file needs the permissions.

To find out which file this is, you can use window's own "Procmon". This shows all file accesses. Open the program and set the filter "Path contains C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys". Then check which file the "ESTArchiveStorageService" process tries to accessand allow access to this file.

We have planned a quarantine function for the future. Until this is implemented, you can, for example, set up a quarantine mailbox and deliver emails that have been detected as spam to it. To do this, you can use the following rule:


"Mail is spam" condition. To do this, you need to set a spam score. By default, the value 5 is recommended here.

Action "Forward copy to SMTP server". Here you specify the e-mail address of the quarantine mailbox and the SMTP server connection.

Action "Do not deliver email". This will delete the original email and deliver only the copy to the quarantine mailbox. It is important that this action is listed last.

 

Alternatively, you can use this action instead of "Forward copy to SMTP server":

"Modify recipients (SMTP)" action. Delete the existing recipients here and specify the quarantine mailbox as the recipient.

This action is useful if the quarantine mailbox is on the same SMTP server as the original recipient.