Frequently Asked Questions

1.  How does Mailwatch work?
MailWatch ensures messages sent and received on your e-mail system conform to your organizational e-mail policy through a four-step process:

  • Messages are broken down into their component parts. Attachments are uncompressed, if necessary.

  • Message components and attachments are scanned for spam, viruses, size, content types and keywords.

  • Suspect messages are handled according to individual configuration instructions. They can be blocked in quarantine, held for later delivery or deleted.

  • Appropriate email is then delivered onto your organization.

2.  How do I administer MailWatch?
MailWatch is configured through an intuitive, Web-based wizard that guides you through the process of creating MailWatch policies and exception lists to accommodate the needs of specific users. MailWatch Administrators also use this interface to monitor system activity, release blocked messages and generate real-time reports.

3.  Will my mail get interrupted if I route my Internet domain through MailWatch for the managed solution?
No. MailWatch operates as an SMTP re-mailer processing incoming and outgoing messages in a manner that is transparent to the end user.

4.  How does MailWatch detect attachments?
After receipt, the message is broken down recursively into its component parts. These components may be encoded (i.e. UUENCODE, BinHEX, MIME), compressed (i.e. PKZIP, ARC, CAB, AR),. If the component represents an archive, such as a PKZIP file, MailWatch will extract and process each file until it is recognized as a raw data type. Examples of raw data include text files, bitmaps, binary files and executables. Recursive disassembly ensures that all the data is identified, even if the information is compressed, encoded, nested, or incorporates a variety of these techniques. Because MailWatch does not identify a message component based upon the file extension, users are prevented from simply renaming files to avoid detection.

5.  How do I release a file blocked by MailWatch?

MailWatch can be configured to delay or block messages that meet specific criteria. This is commonly used to block files over a particular size (i.e. 5 megabytes), or to block files of a particular type (i.e. messages that contain a virus or video). These messages are archived on the MailWatch System and can be released by the MailWatch administrator.

6.  How often do I need to update MailWatch?

MailWatch automatically updates the virus definition each time a new DAT becomes available. MailWatch is centrally operated and maintained, with hourly updates to the MailWatch system as the latest threats are identified and resolved. Unlike conventional workstation- or server-based software, MailWatch ensures a continuous boundary service layer of protection for local, remote and distributed users. For Spam and content filtering policies, you determine how often and when you would like to update your policies.

7.  How long does it take MailWatch to process each message?
MailWatch processing is a function of the size of the message. On the average, MailWatch can decompose, scan and recompose e-mail smaller than 1 MB in lesss than 10 seconds. The process is transparent to both the sender and recipient since the screening occurs while the message is still online.

8.  Do I need to install any hardware or software with MailWatch?
No, you do not need to purchase, install, test or debug any hardware or software with MailWatch.

9.  How long are suspect messages held?
Messages held in quarantine are automatically deleted after seven days, unless they are released by the MailWatch administrator.

10.  Will I be notified of blocked messages?
You may choose to receive notification of blocked messages and you may customize the way in which you are notified.

11.  What kind of reporting is available with MailWatch?
Our Web interface allows administrators to view detailed, real-time reports showing Internet e-mail messages that exceed a policy configured by the administrator Messages are made available for reporting within five minutes of receipt by the MailWatch system.

12.  How secure is MailWatch?
We have created a custom firewall solution to enhance network and data center security. We have automated network and data center surveillance 24 hours a day, seven days a week to identify and curtail potential security breaches. Electronic access cards and cipher locks are used to physically secure the data center from unauthorized access.

13.  Who determines my company's e-mail policies?
There are several default policies that are enabled when your account is activated. They can be used as-is, or be modified to meet the needs of your organization. Your company's administrator can also set up criteria specifically for your company. MailWatch screens and handles messages based on the criteria you establish for your company and individual users.

14.  What are Xecuritas' maintenance procedures for MailWatch?
As part of our normal operational procedures, Xecuritas performs the following maintenance duties: Nightly backup of all quarantined messages and historical logs. Compilation and delivery of daily, weekly, and monthly reports. Management of quarantined messages; automatic purge of aged messages. Auditing of usage patterns, access, etc.

15.  How long does it take for a message with graphics to get scanned?
The average time for messages smaller than 1 MB to be scanned is between 4 and 10 seconds.

16.  Does the Spam filter need to be updated by the administrator
manually?
We have default Spam parameters set in place when you configure your Spam policy. The filter can be customized by the administrator if needed.

17.  Are there any automatic updates by Xecuritas?
Yes, all of our default policies can be updated when necessary.

18.  What happens if I do get a virus? Is it possible to get a virus?
MailWatch uses virus detection technology from McAfee to significantly reduce the risk of a virus getting to your network. In the rare instance that you might get a virus, please call our technical support. They will ask for the following information: Forwarded copy of the e-mail that has the virus. The mail headers from the messsage.

19.  Does your virus service scan for outgoing mail too?
Yes, just call Xecuritas technical support to configure this service.

20.  How much administration is necessary, or is it automated?
Once policies are configured, daily administration would consist of reviewing e-mails that violate the policies you have in place.

21.  What is an open mail relay?
An open mail relay is an e-mail server that accepts and routes mail from and to users not associated with the server's domain.

22.  Why do open relays represent a problem?
One consequence of having an open mail relay is unscrupulous people may use your mail server to send large quantities of Spam which may cause your mail domain to be blacklisted and prevented from delivering e-mail.

23.  How does MailWatch's HTML feature work?
MailWatch has improved its content scanning with the addition of an HTML feature. E-mail messages that have hidden screen-formatting characters embedded in the words are now being scanned by MailWatch for content and confidentiality.

24.  How do I deploy secondary routes?
When setting up a Mailwatch account you have the option of using a DNS hostname or a IP number as your next route. DNS (ie. mail.domain.com) is a better resolution since changes can be managed from a central point (the DNS server) and propagation would occur to change all the DNS names. Additionally, a DNS name will allow you to have multiple email servers that Mailwatch could communicate with. For example, lets say you have mail.kessjam.com in the relay section of the MailWatch Admin site. You can setup, through your DNS provider, multiple 'A' records for the DNS name mail.kessjam.com