Preventing SPAM with Greylisting

Greylisting is the process of deferring emails from unknown senders. When the email arrives, Greylisting causes the server to return a message that boils down to, “I’m busy at the moment, try again in a bit.” Valid Mail Transfer Agents (MTAs), like Exim, will automatically retry many times. This retry time can be several minutes to start and last for several days. Invalid MTAs will simply give up and move to the next enticing spam target. We use these retry attempts as a way to weed out good email from bad.

cPanel created its own Greylisting daemon, cpgrey, that runs at SMTP receipt time. This means it happens before any real data is sent. The cpgrey daemon looks for a triplet: a source IP address, a source email address, and a destination IP address. If this combination has not been seen in a set time frame (this time frame is configurable), cpgrey will defer all email from that triplet for a set initial block time (again this time frame is configurable.) After the initial block time has expired, the system will accept email from the triplet until the max block time has expired.

cPanel users are able to control which of their domains use Greylisting through the Greylisting interface in cPanel. cPanel users will see a list of domains they control and a simple toggle to disable or enable Greylisting. Bulk actions to enable all or disable all are included in a gear icon located in the top right corner.

You can discuss this announcement in our community forums at: https://www.justhostme.co.uk/forums/viewtopic.php?f=24&t=22

Automated vulnerability patching and malware removal

Let’s give you an introduction to our automated vulnerability patching and malware removal, included at no additional cost to you. Another great benefit of our Great British Web Hosting™.

Hosting providers and web site owners suffer on a daily basis from the consequences of the many security vulnerabilities found in commonly used CMS’s such as WordPress, Drupal and Joomla.

JustHostMe® utilising Patchman detects these vulnerabilities and is able to safely patch them without any assistance from you, our valued customer. Because of our unique approach, you can also be rest assured that your web sites will continue to function properly.

On compromised hosting accounts, Patchman detects uploaded malware and automatically quarantines it for you. We’ll always continue investing in our server security and technologies to benefit and protect your web sites. That’s a promise.

You can discuss this announcement in our community forums at: https://www.justhostme.co.uk/forums/viewtopic.php?f=2&t=20

New partnership with SiteLock

JustHostMe® is happy to announce a new partnership with SiteLock.

SiteLock, the Global Leader in business website security solutions, is the only web security solution to offer complete, cloud-based website protection. Its 360-degree monitoring finds and fixes threats, prevents future attacks, accelerates website performance and meets PCI compliance standards for businesses of all sizes. Founded in 2008, SiteLock protects over 12 million websites worldwide. SiteLock provides comprehensive, cloud-based website security solutions for businesses of all sizes.

You can purchase SiteLock at discounted rates from us here.

You can discuss this announcement in our community forums at: https://www.justhostme.co.uk/forums/viewtopic.php?f=2&t=19

New partnership with CloudFlare

JustHostMe® is happy to announce a new partnership with CloudFlare, the web’s easiest performance and security solution. As a CloudFlare Certified Partner, we deliver their simple and free solution to help protect and accelerate your website. Once your website joins the CloudFlare community, it loads twice as fast and is protected from a range of online threats.

Getting started is super easy—you just need to log into your cPanel control panel and look for the CloudFlare icon. With two clicks, you can activate CloudFlare and your website will automatically be faster and safer around the world.

We are pleased to offer you the CloudFlare service for FREE. There is no commitment. Turning CloudFlare on and off takes two clicks of the mouse, so feel free to try it out. We think you’ll like it.
To learn more about CloudFlare, you can watch the introductory video at http://vimeo.com/14700285 and take a look at their blog at http://blog.cloudflare.com. We are delighted to offer this great service to you and help make your website faster and safer.

You can discuss this announcement in our community forums at: https://www.justhostme.co.uk/forums/viewtopic.php?f=2&t=18

Disabling of Plaintext Authentication for E-Mail

The mail configuration has been changed to make e-mail more secure on the server:

Receiving e-mail

The allowing of plaintext authentication for POP3 and IMAP has been disabled.
Connections to the server on ports 110 and 143 will not be allowed.

Sending e-mail

E-mail clients will be required to connect with SSL or issue the STARTTLS command before being allowed to authenticate.

With that said, we recommend the following settings for your e-mail clients (Outlook, Thunderbird, etc.)

Secure SSL/TLS Settings (Recommended)

Username: Your full e-mail address.
Password: Use the e-mail account’s password.
Incoming Server: YOUR SERVER HOSTNAME (example. mail.yourwebsiteaddress.com)
IMAP Port: 993
POP3 Port: 995
Outgoing Server: YOUR SERVER HOSTNAME (example. mail.yourwebsiteaddress.com)
SMTP Port: 465
Authentication is required for IMAP, POP3, and SMTP.

For your convenience, we explain below how to set up a new account with the correct settings and modify an existing account for both Thunderbird and Outlook.

New account setup in Thunderbird

1. Open up Thunderbird.
2. In the left sidebar click Local Folders.
3. When the right panel loads, under Create A New Account click E-Mail. This will bring up the Mail Account Setup screen.
4. Enter your name, E-Mail address, and Password in the appropriate fields and click Continue.
5. Thunderbird will automatically detect the following recommended settings.

Incoming: IMAP, server hostname*, STARTTLS
Outgoing: SMTP, server hostname*, STARTTLS
Username: Your full e-mail address.
* “Server hostname” would be something like “mail.yourwebsiteaddress.com”.

6. Click Done.
7. If you get the Add Security Exception prompt, click Confirm Security Exception.

Modify an existing account in Thunderbird.

1. Open Thunderbird.
2. In the left sidebar, click the top level folder for the account you want to modify.
3. In the right panel, click View settings for this account.
4. When the Account Settings window opens, in the left pane click Server Settings under the account you are modifying.
5. If your Server Type is IMAP, make sure the port is 993. If your Server Type is POP3, make sure the port is 995.
6. Change Connection Security to SSL/TLS, if it is not that already.
7. To update the Outgoing Mail Server, click Outgoing Server (SMTP) in the left pane.
8. On the list of SMTP servers, select the server in question and click Edit.
9. Make sure the port is 465.
10. Make sure the Connection security is SSL/TLS.
11. Click OK to close the SMTP Server window.
12. Click OK to close the Account Settings window.

Add new e-mail account in Outlook.

1. Open Outlook.
2. Click the File tab at the top.
3. Click Account Settings.
4. On the Account Settings screen, click New.
5. Enter your name, E-mail Address, and Password in the appropriate fields and click Next.
6. Outlook will auto discover the settings. If you are prompted with a security alert, click Yes to proceed.
7. Once the account is successfully added, click Finish.

Change existing account in Outlook.

1. Open Outlook.
2. Click the File tab at the top.
3. Click Account Settings.
4. On the Account Settings screen, click Change.
5. On the Change Account screen, click More Setings…
6. On the Internet E-mail Settings screen, click the Advanced tab.
7. If your incoming server is IMAP, make sure the port is 993. If your incoming server is POP3, make sure the port is 995.
8. For Incoming and Outgoing, set the type of encrypted connection to TLS by selecting that option in the drop down menu.
8a. Certain versions of Outlook are not compatible with the TLS encryption protocol, using SSL in this case is an acceptable alternative.

iPhone Mail Changes

Please find the changes outlined below.

To Enable Incoming E-Mail SSL

From the Home screen, tap Settings.
Tap Mail, Contacts, Calendars and choose the desired e-mail account.
Tap Advanced.
From the Incoming Settings menu, slide Use SSL to ON.
Tap Server Port and make the following change:

IMAP – 993
POP – 995

Tap Save.

To Enable Outgoing E-Mail SSL

From the SMTP menu, tap the primary outgoing server for the account. This will be the server name assigned to your domain.
Next to Use SSL, tap ON.
Tap Server Port and change the port to 465.
Tap Save.

You may need to restart your iPhone for the changes to take effect.

You can discuss this announcement in our community forums at: https://www.justhostme.co.uk/forums/viewtopic.php?f=2&t=8