[chuug] server relaying spam
David Clymer
david at zettazebra.com
Fri Jun 8 13:03:58 EDT 2007
On Thu, 2007-06-07 at 15:04 -0400, phoebe wrote:
> hello,
> i have recently discovered that my mail server is being used to relay
> massive amounts of spam. there are dozens and dozens of outgoing spam
> messages piled up in my mail queue. i need to get this problem fixed,
> obviously, but have no idea what to do or where to get help. does
> anyone have any advice on where a good place to start is, or how i
> might go about figuring out where the spam is originating from? ive
> been told its most likely coming from a hacked php form in one of the
> accounts on the server, but i have no idea if thats true or not or
> what other causes there might be besides vulnerable php forms. thanks
> for any advice.
First of all, ensure that your SMTP server is configured with
appropriate relay access controls. If you don't know how to implement
the necessary access control, and are seeking information on how to do
this, you will need to provide a little more information in order for us
to give more specific advice. I assume that this is a *nix server of
some type, since you are sending this to the CHUUG list. What software
are you using? Postfix, Sendmail, Exim, qmail, etc? Are you running this
on Solaris, OpenBSD, Linux (RedHat, Debian, etc)? Is this also serving
as a web server? What web apps/scripts are you running on this machine?
As always, more information and more specificity, is better than less
when requesting help.
-davidc
--
gpg-key: http://www.zettazebra.com/files/key.gpg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://listmgr.cv.nrao.edu/pipermail/chuug/attachments/20070608/71fca6a4/attachment.bin
More information about the Chuug
mailing list