Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Block bounced/returned messages from SoBig virus

Discussion in 'General Discussion' started by XPerties, Sep 6, 2003.

  1. XPerties

    XPerties Well-Known Member

    Joined:
    Apr 10, 2003
    Messages:
    401
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    New Jersey, USA
    This is the issue at hand most of us are having or had. So many e-mails being bounced back to my servers saying I sent virus (pif, .scr .exe) which I or anyone on my servers have not sent.

    We all know the return e-mail address is spoofed so you get killed with a crap load of e-mails which bogs the server down and can sometimes crash the mail server.

    This is what I need.....

    Someone to help or assist me in editing my EXIM files to delete or block any return e-mails that have this in them. My mail q is around 500-600 a day, sometimes higher.

    I'm will to pay (depending on price), or trade 2 sets of FLASH TUTORIALS for your help.

    I have read so many threads on this issue here and rackshack. I would like someone to verify that there is a way to stop, block these from entering my Q.

    Thanks.

    cPanel.net Support Ticket Number: Willing to pay or trade for assistance
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. compunet2

    compunet2 Well-Known Member

    Joined:
    Feb 21, 2003
    Messages:
    310
    Likes Received:
    0
    Trophy Points:
    166
    I know it may not be the solution your looking for... but there is light at the end of the tunnel. The worm de-activates on 9/10. So you only have to put up with it for another 4 days....

    cPanel.net Support Ticket Number:
     
  3. JPmorgan

    JPmorgan BANNED

    Joined:
    Aug 19, 2003
    Messages:
    93
    Likes Received:
    0
    Trophy Points:
    156
    I thought it was 9/20 and then you have to worry about all the infected computers still sending the worm for months to come. I would imagine its not going to just go away instantly.

    cPanel.net Support Ticket Number:
     
  4. compunet2

    compunet2 Well-Known Member

    Joined:
    Feb 21, 2003
    Messages:
    310
    Likes Received:
    0
    Trophy Points:
    166
    http://securityresponse.symantec.com/avcenter/venc/data/w32.sobig.f@mm.html

    "The worm de-activates on September 10, 2003. The last day on which the worm will spread is September 9, 2003.

    The aforementioned de-activation date applies only to the mass-mailing, network propagation, and email address collection routines. This means that a W32.Sobig.F@mm-infected computer will still attempt to download the updates from the respective list of master servers during the associated trigger period, even after the infection de-activation date. Previous variants of Sobig exhibited similar behavior. "

    cPanel.net Support Ticket Number:
     
  5. rs-freddo

    rs-freddo Well-Known Member

    Joined:
    May 13, 2003
    Messages:
    832
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Australia
    cPanel Access Level:
    Root Administrator
    Xperties, I PM'd you.

    cPanel.net Support Ticket Number:
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice