Mercury Suggestions

If you have suggestions or special wishes for Mercury here is where you make your voice heard.

FJR posted Dec 5 '18 at 11:15 am

Hi David,

just got a error message "Message delivery status" and thought, it would be nice to have that little bug corrected with upcoming Mercury:

Message details:<br>------------------------------------------------------------------<br>Originally submitted:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 3 Dec 18, 9:22:57<br>Originator address:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <> <br>Message's subject:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; =?iso-8859-1?Q?=DCbungsblatt_4?=<br>Message's ID:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <><br>

The subject should be decoded (generally in all error messages) - doesn't look good :-)

Bye    Olaf


jbanks posted Oct 12 '18 at 3:05 am

Some time ago I downloaded a daemon from you that fixed this very issue for me.  Hope you don't mind me sharing this.  I'm surprised really that David doesn't build this into the software..

At 17:09 2017-11-24, Jim Banks


I had been seeing these connections

constantly and when I looked in my log noticed that the same ip has been

connecting to me for weeks trying to hack in (presumably trying different

passwords each time.  Is there any way mercury can be configured to block the ip

after so many failed attempts.  I have them locked out now, but it would be

better if mercury automatically took care of this for


Mercury should block repeated

failed AUTH attempts if they happen within the same SMTP session. This is

usually not the case though. Multiple AUTH failures from the same IP address but

in separate sessions can however, if frequent enough, be caught by my SMTP Event

Daemon. If you would like to have a look at it you can download it here: / Rolf



Tym posted Sep 17 '18 at 6:24 pm

Ooo!! Do we have a release date yet - because the developer blog is quite a bit out of date...?

Sellerie posted Jan 1 '18 at 11:05 am

 I use many filtering rules for a presorting of all incoming mails. Sometimes i want to know, which rule was activated. The message "job killed by filtering rule" does not really help.


It appears to me that DKIM can simply be implemented by writing a Mercury daemon, with the daemon parsing all the necessary fields, and adding the required headers to the outgoing message.

Unfortunately, all the are rather abstract, and do not show any example code, or pseudo-code at all, of a simple message, with an example public key, private key, and a verified message with all the required headers.



Hello David,

Thank you for your very detailed response. As far as I understand, it should primarily support PFS and choose that kind of ciphers with higher priority. Ciphers with a higher encryption should in general always be priorized. Older ciphers don't have to be banned, unless they are considered insecure (because of outdated/depricated) or flawed.

I did some online testing with a online smtp ssl checker: it showed PFS were not supported, but after enabling mercurys session logging I've seen that:

ECDHE-RSA-AES256-SHA, SSLv3, Kx=ECDH, Au=RSA, Enc=AES(256), Mac=SHA1

DHE-RSA-AES256-GCM-SHA384, TLSv1.2, Kx=DH, Au=RSA, Enc=AESGCM(256), Mac=AEAD

ECDHE-RSA-AES256-SHA384, TLSv1.2, Kx=ECDH, Au=RSA, Enc=AES(256), Mac=SHA384

are often negotiated for encrypted communication. These are PFS ciphers. So the online testing doesn't seem to be reliable.

The person of the Data Protection Authority we are in contact with is an IT-Professional. I've heard from him that he had already contact with other mail server developers to help them out with all these issues. I've heard also that they have their own software for testing purposes. My suggestion: I will get in touch with him, show him this thread and ask him to get in direct contact with you. I think that would make more sense. 

Thanky you very much in advance.



beiley posted Feb 15 '16 at 6:37 pm

Just wanted to say thank you for adding SSL support to the MercuryE (Client SMTP) module.  Since Gmail started displaying the notification about non-encrypted mail I was really happy to see version 4.80 added that feature, and made it simple to start encrypting.  Keep up the good work.

P.S.  I tried to send this by your contact form at: but it kept saying "Wrong code" despite me being pretty sure I was typing in the correct codes.   I tried like 5 times, and the codes are pretty clear, so it seems like that form is broken.



On startup after the from v4.74 to v4.80 MercuryI failed to load throwing a "No such file or directory" error.  I tracked the problem down to the path to the certificate in the MercuryI section of mercury.ini file.  The previous certificate was named "imapcert" which v4.80 obviously did not like.  I run in a second Mercury instance in which I run MercuryS so I copied its newly created certificate, then modified the path in the .ini.  My suggestion is to consider whether it would be feasible to allow access to the module GUI after encountering an error like "No such file or directory". 

One other suggestion is to provide the ability to create a certificate from outside of the modules so as not to be dependent on a module starting up in order to create a certificate.


Thanks for providing this Nenad.  I've had a few instances of dubious messages coming through recently which this should help with.  I haven't had experience with Policy Tasks but through some investigation, it looks like you need to escape the double quotes you added around the ~F argument.


Task: "ZIP-EXE",17,0,"C:\\MERCURY\\ZIP-EXE\\zip-exe.bat ~X ~R "~F" ~Z","","",0,"Admin"


Task: "ZIP-EXE",17,0,"C:\\MERCURY\\ZIP-EXE\\zip-exe.bat ~X ~R \"~F\" ~Z","","",0,"Admin" 


If this isn't done, some of the fields in the 'Edit policy task' dialog are incorrect, namely:

Commandline:  C:\\MERCURY\\ZIP-EXE\\zip-exe.bat ~X ~R

Sentinel file: ~F" ~Z"

Parameter: 0


Thanks again


revado posted Oct 10 '13 at 12:42 am

Hi all,


Is it possible to use the "label" function ( thunderbird) with mercury server and IMAP?

Some mailservers have the option to save the label on the server, when opening the same mail on a other computer the label is showed there too.

This wouled be a great function to use with mercury server!



dgimeno posted Sep 6 '13 at 3:45 pm


I have just solved a problem with that parameter.

I am testing version 4.74 and found that e-mails read from one client with the option "leave a copy of the messages in the server" active could not be read by anyone else because the option "offer..." overlaps the option "leave..." and Mercury serves the message only once.

The option should be off by default or, even better, be removed from options available.

Edited: should be in Mercury Suggestions... Sorry.


Hi All,

I was wondering if v5 and the new mailstore engine will support this. At the moment the "Expunge" command fails with "folder in use by other connection" if there is more than one active IMAP connection for that folder. Since we all use mobile phones, tablets... (especially with the crappy iPhone/iPad which does never close mail connections until you shut down the device), this functionality is mandatory in my opinion.

Any news about that?



mah0110 posted May 13 '12 at 12:36 am

Good and Bad News!

First, the bad news is that the trailing asterisk in  .ru/B*  did not help.

In the above two rules, each of the 13 caught by Russia was

also caught by Russia B.  Each of the 12 missed was missed by


Good news is, after closely analyzing the hex in what was caught and missed, I think I finally figured it out.

The catch is when there are 2 CRLF adjoining the .ru:     www.somewhere.ruCRLFCRLF next line may be blank or may have text CRLF       (or sometimes no next line at all)

The miss is when it is followed by only 1 CRLF:              www.somewhere.ruCRLF  (next line is  blank in the ones I looked at) CRLF

 So, it appears the bug is not at EOM, but at the end of a line.




[quote user="jessicarabbit"]The ClamAV world seems in flux. ClamAV now seems to be Immunet.[/quote]

ClamAV is still ClamAV and they produce a Windows version of the product available . Immunet was a separate company who developed a 'cloud-based' Windows anti-virus product with ClamAV.  The Immunet version is not suitable for use with Mercury.

[quote]In an effort to get ClamWall running, I ended up downloading ClamWin and pointed ClamWall to the bin directory. The Question then became "Is it working". I have not figured out how to tell.[/quote]

ClamWin from is a different product that does not contain the clamD module that Mercury needs.

You can go to and download the latest ClamAV version - *i386* for 32-bit or *x86_64* for 64-bit install.

(There are other Windows versions at and, although the last one has not been updated for some time.)

[quote]One of the things I love about Mercury is what I call "Visibility". It is reasonably easy to tell what it is doing or not doing. Please extend this concept for what ever resource we are using to do anti-virus checking and display some form of verification, status, log entry, etc. that the virus checker is alive and processing the mail. This goes for the other add-ons as well.[/quote]

One thing you can do is examine the ClamWall log file regularly and look for error lines.  There may be tools out there to automate that task as well.


Mercury/32 V4.73 with Novell Netware NDS-module.

Because logging in from Mercury/32 to NDS is not possible, this forum gives the advice to login to NDS prior to starting Mercury/32 with an account reduced to minimum necessary rights. Created such an account in first step with security equivalence to admin-account. Now started reducing the rights for that account. Ran in a little problem:

Due to policies set with NCONFIG  all users get right to create mailfiles in all other users new mail directory. Obviously Mercury/32 needs more rights. If a mail arrives for a local user, it is placed in queuedirectory of Mercury as file of type QDF. Than the coremodul copies this file to new mail directory in users homedirectory (CREATE) and than tries to rename it to type CNM for Pegasus to recognize it. Therefore the right CREATE isn't enough ... the reduced account needs MODIFY (which amongst others includes renaming) too. But that may be a securityrisk (and I will have to change rights of every of my hundreds accounts by hand and do that with every new account).

So it would be nice if Mercury/32 copies the QDF as CNM to the new mail directory instead of copying QDF and renaming  it to CNM afterwards!

Have a nice chrismas



Hide topic messages
Enable infinite scrolling
1234 ... 5
All posts under this topic will be deleted ?
Pending draft ... Click to resume editing
Discard draft