Block E-mail sender not created in server

[lucascaleto]

Hi, how can i prevent to a user try using my smtp to send mail.
using different sender like:
[email protected]

i think this will prevent some atacks when the clients have virus in the computer and virus using smtp of my server .

 

[thewebhosting]

Only allow SMTP authenticated scripts to run on your server. function like php mail() does not require SMTP authentication.

You can disable this function by preventing nobody user to send emails from WHM. Go to WHM -> Tweak settings -> check the checkbox "Prevent the user "nobody" from sending out mail to remote addresses"

 

[lucascaleto]

And to prevent smtp users dont exists
for example. my client have the username and password pop/smtp account get from a virus


and the virus try send mail using ther username and password but with another sender (the correct smtp/pop autentication data) , virus just change the from header. and dont use scripts
how can i prevent this ?

 

[eth00]

Not sure you really can do that. The best option is to limit the max per hour and enable all of the extended logging. When they do start to send out you can easily track it down.

 

[thewebhosting]

Not sure you really can do that. The best option is to limit the max per hour and enable all of the extended logging. When they do start to send out you can easily track it down.

You can set the maximum emails per hour limit from WHM -> Tweak settings.