Block E-mail sender not created in server

lucascaleto

Member
Dec 16, 2006
10
0
151
Hi, how can i prevent to a user try using my smtp to send mail.
using different sender like:
[email protected]

i think this will prevent some atacks when the clients have virus in the computer and virus using smtp of my server .
 

thewebhosting

Well-Known Member
May 9, 2008
1,199
1
68
Only allow SMTP authenticated scripts to run on your server. function like php mail() does not require SMTP authentication.

You can disable this function by preventing nobody user to send emails from WHM. Go to WHM -> Tweak settings -> check the checkbox "Prevent the user "nobody" from sending out mail to remote addresses"
 

lucascaleto

Member
Dec 16, 2006
10
0
151
And to prevent smtp users dont exists
for example. my client have the username and password pop/smtp account get from a virus


and the virus try send mail using ther username and password but with another sender (the correct smtp/pop autentication data) , virus just change the from header. and dont use scripts
how can i prevent this ?
 

eth00

Well-Known Member
PartnerNOC
Mar 30, 2003
721
1
168
NC
cPanel Access Level
Root Administrator
Not sure you really can do that. The best option is to limit the max per hour and enable all of the extended logging. When they do start to send out you can easily track it down.
 

thewebhosting

Well-Known Member
May 9, 2008
1,199
1
68
Not sure you really can do that. The best option is to limit the max per hour and enable all of the extended logging. When they do start to send out you can easily track it down.
You can set the maximum emails per hour limit from WHM -> Tweak settings.