1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


E-mail and Server Security

Powerful protection for networks and confidential data against all types of malware for Windows, Citrix and Microsoft Exchange servers.

F-Secure E-mail and Server Security replaces previous F-Secure Anti-Virus for Windows Servers, F-Secure Anti-Virus for Citrix Servers and F-Secure Anti-Virus for Microsoft Exchange products.

What is new in this release:

- F-Secure Policy Manager 10 compatibility – added support for the latest version of F-Secure Policy Manager.
 - Configurable host identity – when deploying the product with F-Secure Policy Manager, it is now possible to specify whether the managed host will be identified using SMBIOS UID or randomly generated GUID.
 - DeepGuard – improved protection utilizing real-time behavioral analysis and F-Secure cloud based reputation system.
 - Browsing Protection – now end users working on the terminal server can safely browse the Web and stay protected against browser exploits and rogue web sites.
 - Cloud-Based Security ­– the information about new threats and dangerous sites is collected from customers all over the world on cloud-based technology.
 - Process exclusions – it is now possible to exclude trusted processes from real-time scanning.
 - Max number of concurrent scans – you can configure the maximum number of concurrent scanning threads.
 - Possibility to disable Manual Scanning for end users – it is possible to disable Manual Scanning for all users, or to enable it only for users with administrative rights.
 - Database update check randomization – to mitigate the so-called “AV storm” effect on virtual environments, it is now possible to configure whether to check database updates with a random interval at the system startup.
 - New Microsoft SQL Server Express – included the latest version of Microsoft SQL Server 2008 R2 Express that increased database size limit from 4 GB to 10 GB of storage per database.

Operating Systems:

This release is for the following operating systems:
 - Microsoft® Windows Server 2003 with the latest service pack
 - Microsoft® Windows Server 2003 R2
 - Microsoft® Windows Server 2008
 - Microsoft® Windows Server 2008 R2
 - Microsoft® Small Business Server 2003
 - Microsoft® Small Business Server 2003 R2
 - Microsoft® Small Business Server 2008
 - Microsoft® Small Business Server 2011, Standard edition


Software downloads

F-Secure E-mail and Server Security 9.20 installer (exe)

F-Secure E-mail and Server Security 9.20 installer (jar)


E-mail and Server Security 9.20

F-Secure E-mail and Server 9.20 Security Hotfix 2 (May 14, 2013)

F-Secure products receive signature and technology updates over the network automatically. All these updates are signed using proprietary technology with strong cryptography and are validated before being taken into use. A new improved version of this technology has been developed to replace the old one. This new technology is already included in most of our products and used widely for most of our recent components.

F-Secure's proprietary update validation mechanism will shortly expire and hotfixes are required to ensure that affected products continue receiving updates after Monday May 27th 2013. In some scenarios updates are still using the old mechanism and require a hotfix to recover. In these cases a hotfix is mandatory to ensure normal functioning after the old signing mechanism stops working. For more details, refer to Support news.

Note: Affected products that were installed and receiving updates prior to the expiration date will continue to work normally without user action.

Note: Restart is not required after installing this hotfix.

E-mail and Server Security 9.20 Hotfix 2 (.fsfix) 675 KB (Updated: 27 May 2013)
E-mail and Server Security 9.20 Hotfix 2 (.jar) 675 KB (Updated: 27 May 2013)

F-Secure E-mail and Server Security 9.20 Hotfix 1 (April 24, 2013)

Related to security advisory FSC-2013-1.

This hotfix solves the following product issue: Remote code execution vulnerability in DLL component.

A vulnerability in a legacy DLL component related to ActiveX control, in certain F-Secure’s server products, allows arbitrary connections to be made to the ODBC drivers when using the Internet Explorer (IE) web browser. If the local server is running using local authentication, an attacker may be able to execute arbitrary SQL statements.

E-mail and Server Security 9.20 Hotfix 1 (.fsfix) 333 KB
E-mail and Server Security 9.20 Hotfix 1 (.jar) 333 KB

Note: Applying this hotfix does not require a reboot.


Document downloads

Release Notes English

Deployment guide (pdf) English

Manual (pdf) English

What is SaaS?

Security as a Service makes sense for business.

Read more

Performance with usability

F-Secure’s portfolio of security products for businesses is stronger than ever.

Read more

Upgrade your support

Find out how to upgrade your support level.

Read more