The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Authentication sending from website

Discussion in 'E-mail Discussions' started by diracuser, Jul 28, 2017.

Tags:
  1. diracuser

    diracuser Member

    Joined:
    Oct 22, 2014
    Messages:
    21
    Likes Received:
    1
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    I can see that all websites hosted in the CPanel send email from website forms, and the system sends by usersystem@mainhostingDomain.com (not userDomain), this user can't exists as email user is user system + mainhostingDomain.com ,
    and Exim server accepts this emails... That it's correct ? I want to prevent spamers send email from website forms so I want that websites send by authentication.....
    I have enabled in my CPanel "SMTP Restriccions" ....

    Thanks
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    37,064
    Likes Received:
    1,287
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    The "SMTP Restrictions" feature is helpful in that it prevents scripts uploaded to your server from sending SPAM through remote SMTP servers. However, since the emails in-question are sent from the local server, you'd need to enable some additional options to help prevent outgoing SPAM. The following document is a good place to start:

    How to Prevent Email Abuse - cPanel Knowledge Base - cPanel Documentation

    Additionally, this topic is discussed in more detail on the following thread:

    How to stop sendmail?

    Thanks!
     
    linux4me2 likes this.
  3. diracuser

    diracuser Member

    Joined:
    Oct 22, 2014
    Messages:
    21
    Likes Received:
    1
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Thanks for your response, I read the linked posts but there are not any way to force SMTP authentifications for CMS forms ...
    I looked that all usersystem@mainhostingDomain.com are authentificated as "loccaluser" and
    Sender IP: 127.0.0.1 ..
    How can I write a ACL rule to block Auth:localuser and IP: localhost ?

    Thansk
     
  4. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    15,618
    Likes Received:
    296
    Trophy Points:
    433
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    What CMS are you using exactly? I would think most do provide settings for this exact issue.
     
  5. rpvw

    rpvw Well-Known Member

    Joined:
    Jul 18, 2013
    Messages:
    260
    Likes Received:
    76
    Trophy Points:
    28
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    Additionally, rules that block localuser and 127.0.0.1 may break webmail ......... do lots of testing to ensure all webmail services still work as expected, and that any tailwatch service that relies on a localuser/localhost connection for checking any of the mail services still works.
     
Loading...

Share This Page