The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Check client mail?

Discussion in 'E-mail Discussions' started by taz7981, Dec 26, 2013.

  1. taz7981

    taz7981 Registered

    Joined:
    Dec 6, 2013
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Hello,

    Is there a way to check a sample of clients outgoing emails? Sometimes I get a suspicion that one of the clients is sending spam on a slow but steady basis, but don't know how I could best confirm without being able to check what's being sent out.

    Any tips on this, or alternative ways?

    Thanks
     
  2. taz7981

    taz7981 Registered

    Joined:
    Dec 6, 2013
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Nevermind, I've found a solution.
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    653
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    You could review the /var/log/exim_mainlog file to see the mail activity for the account. In addition, there are a few mail report options in Web Host Manager under "Email".

    Thank you.
     
  4. taz7981

    taz7981 Registered

    Joined:
    Dec 6, 2013
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Turns out my initial solution isn't that reliable.

    But doesn't exim log only show data about the email being sent/received and when? I want to actually see what's inside the email, so I can confirm whether it's spam or not.

    Is there no way to do this?
     
  5. cPanelPeter

    cPanelPeter Technical Analyst III
    Staff Member

    Joined:
    Sep 23, 2013
    Messages:
    569
    Likes Received:
    15
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    Not really. There is lots of data stored in the exim_mainlog file, but not the whole message. At best you might get the subject line which is seen in the log file as T="Subject Here"

    If you have the message ID and the message is still in the mail queue, you can type:

    # exim -Mvb MESSAGEID

    to view the message body of that MESSAGEID
     
  6. ThinIce

    ThinIce Well-Known Member

    Joined:
    Apr 27, 2006
    Messages:
    346
    Likes Received:
    7
    Trophy Points:
    18
    Location:
    Disillusioned in England
    cPanel Access Level:
    Root Administrator
    One option might be to enable scanning of outgoing email with spamassassin in the exim configuration, this may give you some idea on the 'junkishness' of mail going out of an account...

    cPanel also now has options to archive incoming / outgoing email within each account, you could enable this and then take a gander at what's inside

    Email Archiving

    Another good tell is many IP addresses from different countries sending mail via an email account, this is normally a botnet slowly sending single messages with login details of a compromised email account
     
Loading...

Share This Page