Bandwidth Suspension due to SMTP

O

OwenC

Member
Oct 23, 2019
15
1
3
1Hopkins!
cPanel Access Level
Root Administrator
Help appreciated with this problem....
So one client on a shared server is getting bandwidth limited.
If I look in Cpanel / Metrics / Bandwidth, I see that SMTP has been increasing since Aug 2020 (4Gb) to Nov (12Gb), Dec (19Gb) and now for January it's 54GB!!
Thing is, I can not see any mail transactions to that degree. Cpanel email accounts are fine.
/var/log/maillog looks OK to me. Even WHM/Mail/mail sent summary doesn't show any big sends.

Anyone seen this, or can you point me in the right direction.

Thanks in advance.
 
Last edited by a moderator:
kodeslogic

kodeslogic

Well-Known Member
PartnerNOC
Apr 26, 2020
562
259
138
IN
cPanel Access Level
Root Administrator
Possibly this may be due to spamming, Have you harden your PHP versions for scripts not to send mails using mail(), and alternative secure smtp() should be used for php scripts.
I would suggest getting in touch with one of the Certified System Administration Service provider to have a close look for you.
 
O

OwenC

Member
Oct 23, 2019
15
1
3
1Hopkins!
cPanel Access Level
Root Administrator
kodeslogic said:
Possibly this may be due to spamming, Have you harden your PHP versions for scripts not to send mails using mail(), and alternative secure smtp() should be used for php scripts.
I would suggest getting in touch with one of the Certified System Administration Service provider to have a close look for you.
Click to expand...
Thanks for the reply.
On previous occasions when there have been scripts compromised etc, the mails have shown in the logs.
I have also run Imunify AV and there is nothing.

Thanks.
 
cPRex

cPRex

Jurassic Moderator
Staff member
Oct 19, 2014
15,188
2,415
363
cPanel Access Level
Root Administrator
I would expect there to be some type of data logged on the mail log. Do you see an increase in size of the /var/log/exim_mainlog file on the system? /var/log/maillog wouldn't show the actual email transactions, so if there was a script sending messages you may not find much there.

You may also want to read through our guide on tracking down spammers here, as that could be helpful for this situation:

support.cpanel.net

How to find the source of spam emails

Introduction In this article, we will be exploring means to determine how spam emails were sent from your server. This is meant to guide you in the right direction in which a further, more in-dep...
support.cpanel.net support.cpanel.net
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
L Tracking IMAP bandwidth use Email 12
W Question about IMAP Bandwidth Email 4
I Problem with IMAP bandwidth usage Email 4
S Bandwidth throttling for SMTP port? Email 1
D Excessive pop3 Bandwidth Email 1
Similar threads
Tracking IMAP bandwidth use
Question about IMAP Bandwidth
Problem with IMAP bandwidth usage
Bandwidth throttling for SMTP port?
Excessive pop3 Bandwidth
Top Bottom