New client was able to exceed the max emails limit set in WHM at 500 per hour, but worse than that, I had entered this new client into /var/cpanel/maxemails, where the setting was at 100.
The entry there was
domain.com=100
They exceeded by the thousands which of course triggered load and queued mail instead of sending me any alerts.
HOW DID THEY DO IT? Mail relayers correctly showed the username as opposed to nobody.
Here is sample from maillog. Any clues?
Nov 29 18:45:49 server imapd: LOGIN, [email protected]###.com, ip=[::ffff:127.0.0.1], protocol=IMAP
Nov 29 18:45:49 server imapd: LOGOUT, [email protected]###.com, ip=[::ffff:127.0.0.1], headers=0, body=0, time=0
The entry there was
domain.com=100
They exceeded by the thousands which of course triggered load and queued mail instead of sending me any alerts.
HOW DID THEY DO IT? Mail relayers correctly showed the username as opposed to nobody.
Here is sample from maillog. Any clues?
Nov 29 18:45:49 server imapd: LOGIN, [email protected]###.com, ip=[::ffff:127.0.0.1], protocol=IMAP
Nov 29 18:45:49 server imapd: LOGOUT, [email protected]###.com, ip=[::ffff:127.0.0.1], headers=0, body=0, time=0
Last edited:
