Protect Business Email. Reduce Costs. Maximize Productivity.

Enterprise-grade email security that eliminates spam, blocks malware, and empowers your team—so you can focus on business, not inbox management.


Enterprise Content Filter

Deploy Amavis—the trusted content filtering standard behind the worlds largest email providers. Reject threats at the SMTP level before they consume server resources or reach your team.

  • Reject spam and viruses at SMTP level—reducing server load and saving processing costs
  • Block non-compliant headers, banned attachments, and malformed messages to protect your domain reputation
  • Deep inspection of MIME types, file names, and decoded content across 20+ archive formats
  • Single SpamAssassin evaluation per message—regardless of recipient count—saving valuable server resources
  • Full RFC 2822 compliance for professional email standards and deliverability

Advanced Anti-Spam Engine

Warden unlocks SpamAssassins full potential with deep Plesk integration and all premium plugins activated. Deliver cleaner inboxes so your team spends less time filtering junk and more time on revenue-generating work.

  • Antivirus – Detect executable attachments before they reach user mailboxes
  • ASN & RelayCountry – Bayesian filtering enhanced with IP reputation metadata for smarter blocking
  • AWL – Automatically learn from historical messages to boost trusted senders and penalize spammers
  • DCC – Collaborative bulk email detection across millions of messages worldwide
  • DKIM & SPF – Verify sender authenticity to combat phishing and business email compromise
  • Phishing Protection – Real-time checks against Openphish and PhishTank feeds
  • OLEMacro & PDFInfo – Detect malicious macros and suspicious documents in attachments
  • Spamhaus SH – Industry-leading DNS-based blacklists for real-time spam blocking
  • Pyzor & Razor2 – Distributed collaborative networks that evolve with emerging spam tactics
  • Rule2XSBody – Native code compilation for faster rule evaluation and lower CPU costs
  • FromNameSpoof – Detect identity theft attempts targeting your customers
  • FreeMail Detection – Identify emails originating from free providers that often indicate spam
  • VBounce – Protect legitimate bounce messages to maintain sender reputation and deliverability
  • WhiteListSubject – Create custom allow/block lists by subject line for business workflows

Multi-Layer Antivirus Protection

ClamAV provides enterprise-grade malware detection with multi-threaded scanning and extended signatures. Protect your business from ransomware, phishing, and zero-day threats—without the cost of commercial antivirus licensing.

  • Automated signature updates multiple times daily keep protection current with zero admin overhead
  • Scan 20+ archive formats including Zip, RAR, Tar, Gzip, and OLE2—threats do not hide in compressed files
  • Detect packed executables (UPX, FSG, Petite) and obfuscated malware designed to evade detection
  • Deep inspection of Office documents, PDFs, HTML, Flash, and RTF files where modern threats reside
  • Third-party signature integration from Sanesecurity, SecuriteInfo, and URLhaus
  • Extended signatures block phishing, scams, casino spam, adult content, and other non-virus threats

Hierarchical Policy Management

Set policies once at the server level, then customize per domain or mailbox. Inheritance eliminates redundant configuration and ensures consistent protection across your entire organization—saving hours of administrative work.

  • Server-wide defaults with domain and mailbox-level overrides for granular control without complexity
  • Flexible spam actions: move to folder, quarantine, block entirely, or tag subject lines based on business needs
  • Empower customers to disable specific filters at domain or mailbox level—reducing support requests
  • One-click revert to parent defaults simplifies troubleshooting and policy management

Self-Service Quarantine

Give customers and employees direct access to manage quarantined messages. False positives are resolved in seconds—not support tickets—saving your team hours of inbox management every week.

  • View quarantine totals by domain and mailbox for complete visibility without admin intervention
  • Customizable policies let users choose to quarantine spam, viruses, banned attachments, or bad headers independently
  • Configurable score thresholds prevent unnecessary quarantining of borderline messages
  • One-click training: mark items as spam or ham to improve filter accuracy, or release false positives instantly
  • Secure message preview with disabled hyperlinks and images—no risk of accidental threat activation
  • Automatic purge scheduling keeps storage costs down while retaining necessary records

Comprehensive Reporting & Analytics

An email security system is only as effective as its reporting. With over 50 detailed reports, Warden transforms raw data into actionable business intelligence—enabling faster decisions and measurable ROI.

  • Inbound/outbound traffic totals by domain and mailbox provide instant security posture visibility
  • Geographic spam analysis identifies threat sources and informs policy adjustments
  • Disk usage monitoring prevents mailbox overflow issues before they impact business operations
  • Date-range filtering enables precise incident investigations and compliance reporting
  • 50+ pre-built reports cover spam, ham, virus, and system performance metrics—new reports added regularly
  • Custom report builder supports line, area, scatter, bar, pie, table, and map visualizations for executive presentations
  • CSV export integrates with your existing BI tools and spreadsheets for deeper analysis

Automated Learning & Reputation

Warden learns continuously from user behavior. When employees move messages to or from their spam folder, the system automatically adjusts—improving accuracy over time with zero manual training required.

  • Real-time IMAP-based learning: filters improve automatically as users organize their inboxes
  • SQL-backed reputation database delivers enterprise performance without slowing email processing
  • Quarantine-based training allows targeted improvement on specific false positives or missed spam
  • Admin-triggered one-off training handles urgent sender reputation adjustments instantly
  • Perform nightly Bayes training or use a custom command line interface designed specifically for Plesk.

Custom Rule Builder

Create business-specific filtering rules without coding expertise. Target headers, subjects, body content, or URIs through an intuitive interface—deploying custom protections in minutes instead of hours.

  • Define name, description, type, value, and scoring for each rule with guided configuration
  • Advanced rule types: body, header, rawbody, meta, and URI matching for comprehensive coverage
  • Multi-parameter scoring enables nuanced rules that balance protection with false positive prevention
  • Built-in debugging validates rules immediately—no more broken filters disrupting business email flow
  • Bulk import and pre-built templates accelerate deployment across multiple domains

Complete Audit Logging

Every message is logged with full detail—sender, recipient, subject, spam score, delivery status, and more. Streamline incident investigation, compliance reporting, and troubleshooting without command-line expertise.

  • Comprehensive message logging captures sender, recipient, IP, subject, content type, status, size, spam level, and direction
  • Filter by policy bank: MYNETS (internal), SUBMISSION (authenticated clients), or SENDMAIL (PHP applications)
  • Direction-based filtering separates inbound, outbound, internal, and relay traffic for targeted analysis
  • Postfix logs auto-processed into readable format—no manual parsing required
  • Rejection logs identify blocked messages with full context for rapid troubleshooting
  • IMAP/POP3 logging tracks protocol, user, IP, and geographic location of every mail client connection
  • SMTP authentication logs record method, user, IP, rDNS, and geo-location for security auditing
  • Configurable retention with automatic pruning balances compliance needs against storage costs

Collaborative Spam Detection

Leverage global threat intelligence from Razor 2, Pyzor, and DCC networks. These collaborative systems dramatically improve bulk email detection without additional infrastructure costs—your server benefits from millions of users worldwide.

  • Razor 2 – Distributed network validates spam signatures against global reputation assignments to detect mutating campaigns
  • Pyzor – Collaborative digest matching identifies spam across networks even when content is slightly altered
  • DCC – Bulk mail detection using checksums that persist across personalized variations—catches campaigns that evade signature-based filters

Role-Based Access Control

Empower resellers, customers, and end users with appropriate self-service controls. Dramatically reduce support ticket volume by letting users manage their own email security—without exposing sensitive administrative functions.

  • Granular permissions: control access to anti-spam/antivirus policies per role
  • Enable self-service for spam, virus, banned file, and header filters—reducing help desk tickets by up to 60%
  • Quarantine management access lets users resolve false positives without admin involvement
  • Report viewing permissions enable transparency while protecting sensitive system data
  • Message log access by role ensures compliance visibility without exposing other users data
  • Mail users can independently manage personal anti-spam and anti-virus settings through their own portal

Client Connection Monitoring

Track every Dovecot session in real time. Quickly identify compromised accounts, unauthorized access attempts, or configuration issues—resolving problems before they impact business productivity.

  • View username, connection count, protocol, IP address, and geographic location for every active session
  • Instantly disconnect suspicious sessions through the web interface—no SSH required
  • Filter by username, IP address, or protocol to investigate specific issues rapidly

Third-Party Rules Integration

Enhance detection rates with community-vetted rulesets at no additional licensing cost. The McGrail Foundations KAM ruleset and other third-party channels provide enterprise-grade protection without enterprise pricing.

  • Built-in KAM ruleset support from the McGrail Foundation for proven spam detection improvement
  • Add custom rule channels with public key integration—expand protection sources effortlessly
  • Configurable update frequency ensures rules stay current without excessive network overhead

Greylisting

Block spam from unreliable senders with zero false positive risk. Greylisting temporarily rejects unknown senders—legitimate mail servers retry automatically while spammers disappear. Reduce spam volume without adding processing overhead.

  • Manage greylisting policies directly through the Warden interface—no command-line expertise needed
  • Enable or disable at server or domain level for flexible deployment across business units
  • Whitelist critical partners and blacklists abusive servers with a few clicks
  • Greylisted messages appear in the reject log for transparent monitoring

Extended Threat Signatures

Dramatically increase malware detection rates using free third-party signatures from Sanesecurity, Securiteinfo, and URLhaus. Protect against ransomware, phishing, and zero-day threats—without premium antivirus licensing fees.

  • Native integration with Sanesecurity, Securiteinfo, and URLhaus—the most respected free signature providers
  • Block phishing campaigns, macro malware, JavaScript exploits, double attachments, and zero-day threats
  • Prevent ransomware infections (TeslaCrypt, Cryptowall, Cryptolocker) that typically originate from malicious email attachments
  • Support for both free and commercial signature sources—scale protection as business needs grow

Queue Management

Identify compromised accounts and abused PHP forms instantly. Resolve delivery issues through the web interface—eliminating SSH sessions and reducing incident response time by up to 80%.

  • Re-deliver, expire, delete, hold, or release queued messages with one click—no command-line required
  • View deferral reasons directly in the interface to diagnose issues without log parsing
  • Inspect headers, PHP script locations, detailed logs, and message previews for comprehensive troubleshooting

SMTP Restriction Management

Reject spam at the SMTPD level before it consumes Amavis resources. Reduce server load and processing costs by filtering out bulk spam early—improving performance for legitimate business email.

  • View rejected clients in the Warden reject log for transparent monitoring
  • Apply recommended SMTPD restrictions with a single click—no manual configuration required
  • Whitelist legitimate clients through the access management area to prevent false rejections

Access Control Management

White-list or black-list senders at the SMTPD level by IP address, CIDR range, HELO hostname, envelope sender, or recipient. Fine-tune access controls to protect your server while ensuring legitimate business communications always get through.

  • Whitelist servers rejected by SMTPD restrictions or DNSBLs—restore critical business email flows instantly
  • Dashboard widget enables rapid access file searches without navigating multiple menus
  • Bulk editing of postmap files through grid interface—manage hundreds of entries efficiently

Spam Analysis Reports

Understand exactly why messages were classified as spam without parsing technical headers. Detailed rule breakdowns and scoring summaries enable faster troubleshooting, customer communication, and policy optimization.

  • Detailed SpamAssassin rule matching with exact scores—identify what triggered classification instantly
  • Positive and negative scoring descriptions help explain decisions to non-technical stakeholders
  • Plesk filter check summaries with pass/fail status and failure messages for rapid diagnosis

Postscreen Defense Layer

Deploy Postfix Postscreen as a lightweight first line of defense. Block botnet attacks and resource-hungry spammers before they reach your main SMTP server—preserving system resources for legitimate business email and reducing infrastructure costs.

  • Block spambots and zombies at the network edge, protecting SMTP server capacity for real traffic
  • Single lightweight process handles multiple connections efficiently—minimal resource impact vs. full SMTP daemons
  • DNSBL integration with weighted scoring lets you prioritize blocklists and tune blocking thresholds precisely
  • Temporary allowlist for passing clients eliminates repeated testing delays for trusted senders
  • Multi-layer strategy: Postscreen filters the majority of spam cheaply before heavier content inspection begins

Rule Score Management

Fine-tune filter sensitivity with an intuitive dynamic grid. Adjust scores to match your business tolerance for false positives—balancing protection with deliverability without editing configuration files.

  • Auto-suggest search filters rules by name, description, channel, or category for rapid navigation
  • Automatic categorization (spam/ham/neutral) based on current scores enables instant sorting and analysis
  • Custom-edited rules are flagged for easy identification—maintain clean audit trails of policy changes

Rule Performance Statistics

Monitor filter performance with granular rule tracking. Identify which rules are most effective, optimize scoring thresholds, and demonstrate the value of your email security investment with data-driven insights.

  • Track hit counts and score ranges for every triggered SpamAssassin rule—quantify what is working
  • Three-way classification (Ham/Spammy/Spam) with configurable thresholds enables precise performance tuning
  • Selective rule filtering lets you whitelist important rules for tracking or blacklist noise—focus on what matters
  • Optional sub-rule logging reveals nested test results for deep-dive investigations and optimization