What is VIPRE Email Security?

• VIPRE for Exchange takes half the admin time compared to other email security software, and has a lower cost per user
• Includes Disclaimers
• Antispam, antivirus, anti-phishing, antispyware, and malware protection.
• A new, third-generation future-proof plug-in architecture
• Powerful, flexible policy-based SMART attachment filtering

Is Your Antispam Solution Not Getting Image and PDF Spam? VIPRE for Exchange Does!

With the Sunbelt Dedicated Image-Spam Engine: One of the industry's only dedicated image-spam engines, this new functionality uses proprietary technology to add an extra layer of detection of spam images embedded inside of emails. VIPRE for Exchange Gets Image Spam.

Tired of using separate security products on your Exchange server?

Using separate products for antispam, anti-phishing, antivirus, attachment filtering, malware protection and disclaimers? Maybe it's time to switch to an easy to manage, 'all-in-one' integrated and 100% policy-based email security product. VIPRE for Exchange helps you to fight spam, viruses, trojans, phishing, spyware, malware and other messaging security threats like 'zero-day attacks', and at the same time increase Exchange reliability. Sunbelt also has available Sunbelt Exchange Archiver which works seamlessly with VIPRE for Exchange.

VIPRE for Exchange is a third generation, policy-based email security framework that provides you as a system admin with an easy to use weapon to enforce email security polices with an iron fist. VIPRE for Exchange protects your network against spam, phishing, viruses and other messaging security threats, and provides you with unparalleled flexibility and reliability at the same time. Redmond Magazine recently tested it, and explains the benefits of having an all-in-one solution with best-of-breed benefits. Read the very positive review (VIPRE for Exchange was then called Ninja) here!

"With VIPRE for Exchange I can block inbound zips from the outside only, or if I want, inbound exes from the outside only... by policy! No other email security product allowed me to do that. And VIPRE for Exchange is already VERY helpful in quarantining the attachments that have always gotten past us before" - G.K., System Administrator

Very Low Overhead - Improved Reliability

VIPRE's new advanced framework integrates smoothly and perfectly with Exchange and will not drain resources. You can run this on practically any Exchange server and you will not feel the pain. The code is highly optimized for low CPU and disk access resources. Sunbelt is a Gold Certified Microsoft Developer and the VIPRE for Exchange code was developed with consulting from Microsoft. Having just one product that 'does it all' on your exchange server improves reliability.

Takes HALF the time to administer & lower cost per user

To understand organizations' perceptions about various email management systems, Sunbelt Software engaged Osterman Research to survey organizations that are using five different email management systems. The resulting white paper presents the findings of that survey, comparing Sunbelt Software's VIPRE for Exchange with an average of the other four systems. Read this white paper to see how the research has demonstrated that VIPRE for Exchange is rated very highly by users relative to other email management products with which it competes and can be managed at a lower cost per user than other email management systems.

Provides a layered security approach

VIPRE for Exchange gives you several security layers for message inspection, cleansing and management. By using multiple scanning engines for both spam and viruses, while integrating other messaging security rules, all treatment of messages occurs at the server, not at your end-user's workstation – no client software needed, and all modules play nice together. VIPRE for Exchange is the powerful combination of 'best-of-breed' and 'all-in-one'!

Includes MX-Virtualization

MX-Virtualization, or MX-V, technology, which is integrated directly into VIPRE for Exchange, provides a compact and high-speed virtualized Windows environment for the rapid execution and analysis of potential malware. The MX-V technology used by VIPRE reduces reliance upon basic signatures in favor of a more thorough analysis of behavioral characteristics, to protect against zero-day attacks. The MX-V technology is one element of VIPRE that no other competing product on the market has yet to offer. What is amazing is that the performance impact on the Exchange Server is virtually unnoticeable; MX-V uses so little computing power that the admin isn't even aware it's running.

Server-based disclaimer functionality

VIPRE's new disclaimer plug-in delivers functionality to include global and user-based disclaimers for all outbound email for Exchange 2003 and 2007. Administrators have the ability to configure policy-based disclaimers based on specific users, groups, domains, or public folders. User-based disclaimers enable users to adjust their disclaimer statements according to a specific user or department. VIPRE for Exchange also prevents multiple disclaimers when replying or forwarding and gives administrators the ability to allow users to bypass the disclaimer on a per email basis.

Additionally, disclaimer templates are included to allow easy set up of disclaimers using HTML or plain text. Template samples include legal disclaimers, virus warning disclaimers, copyright disclaimers, and more. New reports are also available that provide detailed information on the use of disclaimers within the organization.

Unique and Powerful SMART™ Attachment Filtering

Unlike legacy security products that filter at the gateway, VIPRE's Suspicious Mail Attachment Removal Technology™ (SMART) is the first policy-based attachment filter that filters all attachments based on email direction– inbound, outbound or within the organization. Additionally, it actually scans the header of many types of files to determine their true identity, as opposed to just relying on file extensions.

This means that simply renaming a ".exe" file to a ".txt" will not fool the VIPRE for Exchange attachment filter and functions as an important zero-day attack protection. It is policy-based so Admins can create different settings for users and groups of users so you have a 100% detection and removal of possible malicious attachments while at the same time allowing policy level exceptions for outbound and internal traffic. The antivirus and attachment filtering plug-ins together are highly effective, with extremely low overhead.

Policy-based plug-in management

VIPRE's plugin architecture was designed with flexibility and extendability in mind. That way you get a robust messaging framework that enables you to manage your entire messaging security. You can create customizable policies utilizing VIPRE's integrated plug-in management.

VIPRE for Exchange supports plug-ins for antispam/anti-phishing, antivirus, and attachment filtering. The messaging security framework is built to accommodate the integration of additional plug-ins in the future such as content filtering, content auditing, and more. The current protection engines are:

* Antispam Software: Multi-engine support, provided by Cloudmark and Sunbelt (integrated anti-phishing) * Antivirus Software: Multi-engine support, anti-malware engines provided by Authentium and VIPRE * Attachment Filtering: Sunbelt proprietary filtering engine with an advanced method (directional and source level control) of filtering attachments at a granular level

With extensive policy creation capabilities, you can create custom policies for groups of users or a single user using Active Directory. You can set parameters based on user and/or organizational requirements. If you wish, you can simply associate all users with VIPRE's default plug-in polices and have a powerful messaging protection solution in place in just a few minutes. Or, you can create separate policy templates for different groups or individuals. And, you don't have to set up and maintain lists of blocked IP addresses and constantly create all sorts of custom rules. You have the flexibility to fine tune the aggressiveness of detection for all messaging plug-ins.

Fast deployment in Exchange 2003 and 2007 environments

VIPRE's management console enables you to install, configure and manage your full messaging security from one central location. Designed as an MMC snap-in, deployment is simple with a minimum of configuration effort needed. VIPRE for Exchange seamlessly integrates with Microsoft's platform and provides spam, phishing, virus, file attachment and malware protection. Additionally, VIPRE for Exchange makes it easy to create policies across multiple messaging plug-ins with its MMC interface.

Multiple scanning engines for higher detection and protection.

VIPRE is designed to meet both the antispam/anti-phishing and virus protection needs of your organization. With multiple spam and virus scanning engines, you automatically receive higher detection rates and a more accurate response to the messaging threats that attempt to enter your network. As an integrated email content checking, antivirus solution and antispam software, VIPRE for Exchange not only scans and eliminates viruses and other dangerous message content, but also filters attachments at the Exchange server, before they reach your users.

Sorts automatically to user's quarantine folder

For its antispam plug-in, VIPRE for Exchange utilizes multiple detection capabilities including RBL technology and the award-winning Cloudmark spam engine. This plug-in delivers superior spam detection using heuristic functionality with signature lookup capabilities. VIPRE for Exchange can be configured to delete, quarantine, add Subject line identification, or send to a custom quarantine folder in the end user's Exchange mailbox.

Custom rules capabilities gives you the ability to control spam and any other kind of email. You can supplement the spam detection engine with a variety of rules created on a number of email message properties (such as body, sender IP, header, or subject).

With the ability to strip HTML content prior to scanning, as well as an option to add cumulative points for words or phrases that appear multiple times in a single message, you can control how email is scored based on your custom rule selections.

Supports Sender Policy Framework and 'Auto-whitelisting'

With the increasing number of phishing attacks, identifying legitimate email addresses from spoofed addresses is important. Using the SPF, users are able to test whether a specific email originated from its claimed domain. VIPRE for Exchange allows users to participate in SPF, helping reduce the risk of phishing and fraudulent email. Auto-whitelist functionality automatically adds outgoing mail recipients. This greatly reduces false positives. Unlike other products that have just a single block and allow list for the server, VIPRE for Exchange has individual block and allow list for each user.

Aggressive virus detection and elimination.

VIPRE for Exchange uses multiple industrial strength antivirus engines to scan inbound and outbound email. With two antivirus plug-ins included, you dramatically reduce your chances of infection. You can set scanning parameters at the policy level including per-policy scanning that allows you to disinfect and/or quarantine pieces of an email, essentially breaking apart the email message and only quarantining infected files instead of stripping all attachments. You can also allow for quarantine and unquarantine actions at the policy level and set per-policy notifications to other key contacts within your organization. Additionally, both sender and receiver notifications can be set for any viral activity detected.

With this layered approach, VIPRE for Exchange not only quarantines and cleans viruses but also blocks potentially hazardous file attachments and looks for common virus signatures during the scanning process including inspection within compressed files such as RAR and ZIP files within emails. VIPRE for Exchange automatically checks for updates to the virus definition files ensuring the best possible virus protection.

Email and attachment filtering on a per-policy basis.

Using VIPRE's powerful policy-based attachment cleansing capabilities, you can configure inspection and filtering on a per-policy basis. You can set rules based on users and file types that enable you to quarantine potentially harmful content or attachments by files extension including .doc, .exe, .dll, .pdf, visual basic scripts and more. No other messaging solution in the industry utilizes the advanced 'VIPRE for Exchange Logic' directional and source level control policies to manage your attachment filtering!

Configurable reporting options for all plug-ins.

VIPRE for Exchange delivers system reporting for all plug-ins with a set of pre-defined reports with the ability to generate custom reports based on individual needs. The database-driven reporting engine can generate reports with information at the system, group, and/or user level. You can choose reporting options to show the number of inbound mail messages scanned, number of spam deleted or marked, number of viruses intercepted, number of filters triggered, percentage of viruses by name, and more.

Are there different versions of VIPRE for Exchange for Exchange 2000/2003 and Exchange 2007/2010?

Yes, there are different versions. Exchange 2007/2010 run only on 64 bit platforms, and we developed a version of VIPRE Email Security that works exclusively with both. This is a separate version / download than the one for Exchange 2000/2003. There are more Exchange version-related FAQ's at the end of this list.

What is VIPRE Email Security for Exchange?

VIPRE for Exchange handles all of your messaging security needs: spam, virus, disclaimers, content auditing/filtering, smart attachment filtering and several other planned plug-ins. It is a third-generation messaging security product, the first of its kind, and a great combination of 'best-of-breed' and 'all-in-one'.

Which third-party AV engines come with VIPRE for Exchange and are they any good?

In addition to Sunbelt's proprietary the VIPRE antivirus engine, VIPRE for Exchange also includes the Authentium engine. AV Patterns are hosted by Sunbelt, and with regular intervals to your site. Unlike some low-end competitors, VIPRE does both real-time antivirus scanning on the Exchange information store as well as full scans of existing items in the information store!

 

I already have antivirus covered for my exchange server, can I run VIPRE without AV?

Yes, you can. However, when you see the price per mailbox for VIPRE's integrated AV, compare that to your current yearly AV maintenance price and you'll see VIPRE is highly likely going to save you a lot of budget money. Ask your rep or reseller about the special Competitive Upgrade Program' we offer.

What makes the VIPRE for Exchange Attachment Filtering (AF) so "SMART"?

There are several different reasons why it is so powerful:

• It is the only attachment filter that checks inbound, outbound and internal attachments.
• It looks beyond many types of file extensions, delving into the actual file headers as opposed to just the file extension itself. This means that simply renaming a ".exe" file to a ".txt" will not fool the attachment filter and functions as an important zero-day attack protection.
• It is policy-based so Admins can create different setting for users and groups of users so you have a 100% detection and removal of possible malicious attachments while at the same time allowing policy level exceptions for outbound and internal traffic. The AV and AF plug-ins together are highly effective, with extremely low overhead.

 

Is VIPRE for Exchange protecting my users against Phishing?

Yes, the Cloudmark spam filter has this as a built-in feature and is very regularly updated.

I have an existing license for 'x' mailboxes and want to expand this with y more. How does that work?

To expand an existing license, it's best to call in and ask for your sales rep. They can do this for you, as you need to get the best price per mailbox!

What kind of AV scanning does VIPRE for Exchange do?

Unlike some low-end competitors, VIPRE does both real-time antivirus scanning on the Exchange information store as well as full scans of existing items in the information store!

What is the overhead that VIPRE is putting on my Exchange Server? How much CPU is it taking?

Most Exchange Servers are running with the CPU lower than 50%. During our testing we have seen that VIPRE with antispam, antivirus and attachment filtering under full load adds about 10% to that load. So a server running at 50% CPU would now run at an average of 60%. However, it can be a lot less! As an example, our own production Exchange Server, a 2 CPU dual-core 3.2 GHz box with 3 gigs of RAM hosting 200 mailboxes, running VIPRE processed just under 100,000 email messages in a 24-hour period with the average CPU utilization at 15% CPU, the total VIPRE CPU utilization was less than 3% of the CPU.

What happens if my period of performance for a plug-in runs out?

The plug-in keeps working but no longer gets updates or support. VIPRE for Exchange keeps all your current settings, and continues to run but no new versions of spam definitions, virus signatures, or attachment definitions will be pulled into the product.

What size organization is the product targeted to?

Sunbelt traditionally has serviced small and medium organizations. VIPRE for Exchange will run perfectly fine from 10 to 1,000 users but can easily scale up to 10,000 mailboxes if you have a server which can handle that load.

Which products are you competing with?

At the high end, Antispam tools from the large players. At the low end it would be GFI and Barracuda.. But VIPRE for Exchange outclasses these products easily since VIPRE is a third generation product, true policy-based from the get-go, and was built years after all of these products shipped. VIPRE is fully integrated with Exchange, and was developed after extensive experience with messaging security and with support from Microsoft (we are a Gold Certified Partner). All VIPRE's modules play well together, are 'best-of-breed' themselves, but provide you with an 'all-in-one' and easy to use interface. VIPRE for Exchange was built by admins for admins!

Can I enable filtering per mailbox / per module?

For most modules, yes. For antivirus, no. If you buy AV, Exchange does not allow us technically to pick and choose; it's all mailboxes or nothing. For Antispam, you only buy the amount of mailboxes you want to filter. Attachment filtering is included and any future modules would each depend on what is technically feasible with Exchange.

Using VIPRE for Exchange, can I protect against outbound email threats and can the established policies enforce actions to meet regulatory compliance?

With VIPRE, creating custom policies, you can block virtually any type of outbound email traffic, so depending on your level of compliance requirements this may very well be possible.

What is meant by "directional and source level control"? (Regarding the Attachment Filtering)

"Directional" would be inbound/outbound whereas "Source" level would be internal/external. For example, an email with inbound/internal would be someone inside the company sending email to someone else. If that someone else sent a reply, then from their viewpoint it would be outbound/internal. Keep in mind that rules would get processed from both your people's viewpoint. Just because you're allowed "outbound/internal" for .exes doesn't mean everyone else internally can get it, their policy rules for "inbound/internal" might be strict and block it. Other products don't do any of this powerful logic.

Can I run VIPRE for Exchange together with my existing AV on my Exchange Server?

Yes, you can. You cannot however run them at the same time. It's one or the other. You need to uninstall your old AV product before you can activate the VIPRE AV module.

Who made your product? From where is it supported? Where are the developers?

VIPRE for Exchange is and will continue to be designed, coded, supported and marketed from the United States only. Sunbelt can provide 24/7/365 support options for your site in addition to your normal maintenance.

I don't have time to spend half of my day weeding through quarantine boxes and find false positives. How do you solve this?

First off, the spam engines are constantly updated. Your users can be given their own allow and block list options so that they can indicate which people they want to receive email from or not. The vast majority of system admins let their end-users do the fine tuning of spam management themselves and users really like this way of working. Additional powerful options such as automatically populating a user's allowed list with people they send email to makes this sort of tuning even simpler.

What is the difference between the antivirus plug-in and the attachment filtering plug-in?

Traditional antivirus (AV) software is signature-based, and therefore detects known viruses and trojans. The VIPRE engine is more advanced than that and also uses heuristics and behavioral detection. However, sometimes, brand new viruses are not detected. That is where the attachment filtering (AF) comes in. We are able to block executable-type attachments regardless of what they are called or if they are renamed, allowing for admins to have a 100% detection and removal of possible malicious attachments while at the same time allowing policy level exceptions for outbound and internal traffic. The AV and AF plug-ins together are highly effective, with extremely low overhead.

Are there educational discounts?

Yes, VIPRE for Exchange falls into Sunbelt's Academic Discount Policy. Check with your Rep or Reseller which level applies to your organization.

Is VIPRE for Exchange using Microsoft's VS API that was built in Exchange for antivirus protection?

Yes, Sunbelt is a Gold Certified Microsoft Partner and we have been working with Microsoft in getting the VS API implemented per Microsoft's specifications. Microsoft strongly encourages the development and adoption of Exchange VS API-based antivirus solutions.

• VIPRE is using VS API 2.which is secure and preserves the integrity of the Information Store and its databases
• The Microsoft Exchange product group is committed to providing enhancements to this API, bug fixes, documentation, and technical assistance to ISVs like us.
• The Microsoft Exchange product group does not provide any code updates, documentation, or technical assistance to address issues related to the use of non-VS API-based solutions.
• For Exchange customers using a non-VS API-based solution, Microsoft Product Support Services may ask the customer to uninstall/disable the antivirus solution to help identify issues; this may delay in final resolution.
• VS API enhances the current core feature set by providing abilities to optimize and configure the scanning process at multiple levels, as well as providing Exchange administrators with built-in functionality to monitor the performance of the new API.

 

As we handle IT for many different customers, will it be possible for us to manage all of these installations from a remote installation of the MMC snap-in?

Not yet. It's on a requirements list for future versions. For the moment it's best to remote into the box with a product like VNC or Radmin.

Will VIPRE for Exchange work with Microsoft Small Business Server?

Yes VIPRE supports that platform.

Is there a Webinar where I can see VIPRE for Exchange in action?

Yes, we have a recording you can watch at any time you please with a short PowerPoint intro and then a product demo. Just visit our Resource Tab of the product page.

I'm not so sure I want to allow viruses/spam/malware into our Exchange server. What is your response?

It's a matter of choice to run on-box of off-box. We have solutions for both options. We looked at the on-box scenario extensively before we started working on VIPRE for Exchange, and decided to build for that option. VIPRE allows you to delete viruses and malware at the time of detection BEFORE any end-user could possibly access the malware. And in the case of spam, given the reality of false positives, an on-box solution provides the best mix of safety and flexibility as the user has their quarantine right in their folder list. Look at it this way, even though you lock your front door you still put valuables in a safe, it's all about layered security, and you want to use different engines in the different layers!

Will my VIPRE Email Security for Exchange 2000/2003 licenses work on the Exchange 2007/2010 version?

Yes, your license works the same in both versions.

What Exchange 2007/2010 configurations does VIPRE work with?

VIPRE is supported in all Exchange 2007/2010 environments. Detailed install instructions are in the KB:

VIPRE Email Security for Exchange Operation System Requirements for:

The following table outlines operating system requirements for VIPRE Email Security on Microsoft Exchange 2000/2003.

Component	Requirement	Recommendation
Operating system and software	Microsoft Windows 2000 - Server - Advanced Server - Datacenter Server (SP3 or later) Microsoft Windows 2003 - Server Standard Edition - Enterprise Edition - Datacenter Edition - Small Business Server 2003 Windows XP Professional SP1 for Client Tools .NET Framework 2.0 SP1 MDAC 2.8 SP1 Microsoft Exchange Server 2000 SP3 or Microsoft Exchange 2003 SP1 & SP2 (VIPRE Email Security is not supported on Exchange servers with Microsoft Outlook installed)	Windows Server 2003, Windows XP professional SP2 for client tools
Processor	Intel Pentium or compatible 1Ghz or higher processor	Intel Pentium or compatible 2.4Ghz processor
Memory	768 megabytes (MB) of RAM	1GB of RAM
Available hard-disk space	100MB on the hard disk where you install VIPRE Email Security Additional disk space as needed for the quarantine store.
File format	Disk partitions must be formatted for the NTFS file system. This requirement applies to: System partition Partition storing VIPRE Email Security binaries Partitions containing quarantine store files Partitions containing database files

The following table outlines operating system requirements for VIPRE Email Security on Exchange 2007/2010 ONLY.

Component	Requirement	Recommendation
Operating system and software	Windows 2008, Windows 2003 Server R2 64 bit, Windows Server 2003 Enterprise Edition, Windows Server 2003 Datacenter Edition or Small Business Server 2008 Windows XP Professional SP1 for client tools .NET Framework 2.0 MDAC 2.8 SP1 Microsoft Exchange Server 2007/2010 or greater, Microsoft Exchange Server 2007/2010 Hub Transport Role, Microsoft Exchange Server 2007/2010 MailBox Role	Windows Server 2003 Server R2 64 bit .NET Framework 2.0
Processor	Intel Pentium or compatible 1Ghz or higher processor	Intel Pentium or compatible 2.4Ghz processor
Memory	768MB of RAM	1GB of RAM
Available hard-disk space	100MB - Additional space is needed to store quarantined items.
File format	Disk partitions must be formatted for the NTFS file system. This requirement applies to: System partition Partition storing VIPRE Email Security binaries Partitions containing quarantine store files Partitions containing database files

Note: The Exchange Server is not required if you are installing only the report and quarantine viewers.