Kerio Connect

Welcome to our Kerio Connect feedback forum. Do you have an idea? Do you recognize a good idea when you see one? We want to hear from you!

How can we improve Kerio Connect?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Why not make it posible to blok IP adresses? Right now it is possible to "allow" IP adresses to use SMTP, but why not turn it around?

    Why not make it posible to blok IP adresses? Right now it is possible to "allow" IP adresses to use SMTP, but why not turn it around, and make it possible to block IP adresses?

    4 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  2. Antispam: small

    Small zip files are malware! Large zip files are legit!

    I would love to give a high spamscore or stop zip-files below a certain size. Large zip-files are usually legit. Zip files with a size below 100k is 99.9% certainly some new malware – many of whom escape signature scanning and may pose a threat.

    If attachment LIKE (zip|rar) AND size <100k then (delete|spam|quarantine)

    please?

    4 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  3. Protect messages in Public folder

    Right now, when message from Pubic folder is deleted with IMAP delete command (not move command! but delete command!), the message is immediately deleted. There is no option to restore that message.

    At the same time, message that is deleted from private folder, goes to the "Deleted items" folder.

    Please enable that deleted messages from Public folder can be restored (just like the ones in private folder). So, deleted message should go to the "Deleted items" folder of Public folder, or to the "Deleted idems" folder of private folder of the user who deleted the message from Public folder.

    Thank…

    4 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  4. Alarms on unusual high loads

    It would be nice to have alarms so we can be notified if something unusual is happening on the server. One user account got hacked last week and it took I while before we noticed that. probably we could use different triggers to get warnings that we need.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  5. Prevent overloading with max. Message size restriction for draft folder

    Background: These days some users trying to send/save big email attachments from their smartphone/SSD devices to the KC server. To avoid overloading we limited the outgoing message size.

    We would like to go one step further to prevent performance issues both on server and client side. Although we teached them to use local file solution instead, some users still selecting multiple images on their smartphone. Unfortunately these 50MB> mails are saved to the server. Thus, please add a CPU restriction / message size restriction. Messages should immediately bounced once a Message exceeds the Outbox, Draft and Sent Items Folder size.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  6. Disable login on SMTP port while the port is open for MX record

    We use SMTP on port 25 only for MX record and have constant login attempts on this port. It would be safer if we could disable client logins on this port.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  7. Anti Name-Spamming Feature

    A new Anti-Spam feature would be nice: Incoming (external!) eMails should be checked against names of the users on the kerio server (not addresses!).

    Our company get's some spam from completely external servers & unknown eMail addresses. Only the sender names are faked ones from our own employees - existing names from Kerio Connect. So the idea would be to check the received names against the names within Kerio. Additionally a whitelist would be great to allow name & address combinations from real existing second email addresses of members.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow us to install frontend ssl certificate through webadmin on multi-server

    On a Connect multi-server setup, we can install the ssl certificate for the puppet master just fine, but to install the ssl certificate on a frontend proxy server, we need to manually go into via ssh and replace the certificate. This is not very user friendly and not very intuitive. I believe this is an overlooked feature of the multi-server setup. Thank you.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  9. When

    When Users must be authenticated to send mail is enabled you override this by listing ip adresses who can send unauthenticated. like a backup email script running on a server or a scanner who sends pdf to mail...
    But when you have multiple sites who connect to the mailserver you must set the wan ip in that list. So you now disabled the security for all clients in the entire site. Could you add a option so you can disable the security by sender mail adress like you can do it by IP?

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  10. Antivirus -> If a wirus is detected in a message -> Forward the original message to the ORIGINAL DESTINATION

    Dear Kerio, it is highly impolite, arogant and egoistic, to think, that an IT system "knows better" when doing something, especially when interferring with users data. So while sometimes it may be a neccesary option, to decline the clients their data in an email message when containing virus, but there are definitely cases, when such messages should be marked clearly, but the attachment(s) should be left in place and the messages shall be delivered. Such a decission is definitely NOT up to you, but rather up to the administrator of such a system in cooperation of the owner/investor of the…

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  11. Ability to disable calendar sharing between domains

    On a server with multiple domains alls users in any domain can see the users of a different domain when sharing calendars.

    Can this be disabled? We don't want our clients to see each other domains, surely because we have a hosted solution where different domains are used for different clients. These clients shouldn't be able to share calendars between each other. This is both a security as a privacy issue to us.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  12. guessing passwords - BIG PROBLEM

    1. For SMTP login should be a option to disabled. Today, the active sysnc protocol is still used…

    2. Active sync devices should only be added with administrator only

    3. The Kerio web client should use two factor authentication

    Security log example:

    27/Nov/2018 05:34:35] Failed SMTP login from 88.208.208.52 with SASL method PLAIN.

    [27/Nov/2018 08:12:59] HTTP/ActiveSync: Authentication failed for user user@isotra.cz. Attempt from IP address 88.208.208.52 External authentication service rejected authentication due to invalid password or authentication restriction.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  13. auto answer when attachment deleted

    Automatic answer to the sender of an email, when a attachment is removed from an mail, that he has send.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  14. Block internal SPAMMER

    Have the ability to track who is sending email. You need an option to enable a limit on how many emails are sent by a specific user, not by IP as it is today.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add custom header information like 'x-originating-ip'

    To show always the originating source of the e-mail for quick trace.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  16. Security issue - add http headers for web server

    Some Critical headers are missing on web server side: Cache-Control, X-Content-Type-Options and Content-Security-Policy.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. Disable forwarding e-mail for an entire domain or a selected group of users.

    Disable forwarding e-mail for an entire domain or a selected group of users.

    Restrictions automatic forwarding - ie. Taking out messages outside the company.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  18. smtp relay security to allow only certain domains

    On the smtp relay-control there could be a domain list, which domains can relay mail. This would force the "from" field of the mail to come out of this list of domains. I could add mycompany.com and my2ndcompany.com to this list so users cannot use a different from-adres. This would add security if someones username/password got stolen without them knowing and authenticated smtp-relay is allowed.

    2 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  19. More granularity in anti-hammering settings

    Right now there is no ability to set any parameters to the anti-hammering (password guessing) security features. For example, it would be great if we could specify different lengths of time for the block of IP addresses that are suspected of password guessing attacks. Right now, the ban only lasts a few minutes, but we would like the option to set that to a longer duration.

    It would also be good if we could have the option to permanently block whole IP address blocks of addresses, or at least permanently block repeat offenders.

    1 vote
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  20. support CER format certificate

    please add cer support because it takes 2 hours from me to convert my certificate from CER format to CRT and PEM format

    1 vote
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Kerio Connect

Feedback and Knowledge Base