Block E-mail sender not created in server

**lucascaleto** · 05-20-2009 01:48 PM

Hi, how can i prevent to a user try using my smtp to send mail.
using different sender like:
juliana@hotmail.com

i think this will prevent some atacks when the clients have virus in the computer and virus using smtp of my server .

**thewebhosting** · 05-20-2009 06:07 PM

Only allow SMTP authenticated scripts to run on your server. function like php mail() does not require SMTP authentication.

You can disable this function by preventing nobody user to send emails from WHM. Go to WHM -> Tweak settings -> check the checkbox "Prevent the user "nobody" from sending out mail to remote addresses"

**lucascaleto** · 05-21-2009 06:40 AM

And to prevent smtp users dont exists
for example. my client have the username and password pop/smtp account get from a virus

and the virus try send mail using ther username and password but with another sender (the correct smtp/pop autentication data) , virus just change the from header. and dont use scripts
how can i prevent this ?

**eth00** · 05-21-2009 10:31 AM

Not sure you really can do that. The best option is to limit the max per hour and enable all of the extended logging. When they do start to send out you can easily track it down.

**thewebhosting** · 05-21-2009 06:05 PM

Originally Posted by eth00

Not sure you really can do that. The best option is to limit the max per hour and enable all of the extended logging. When they do start to send out you can easily track it down.

You can set the maximum emails per hour limit from WHM -> Tweak settings.

LinkBack

Thread Tools

Block E-mail sender not created in server

Using an Exim ACL to block sender

Huge Mail server problme !!! 550 Sender verify failed

Temporarily block virus sender IP address

Automatically block an IP of a mail server, possible?

Block Email by Sender's IP?