Hello,
My VPS was having some trouble with spam mails sent through a infected archive on one of the websites I have on him.
So I searched for some solutions and found that one:
http://forums.cpanel.net/f43/setup-...-hour-per-domain-users-201222.html#post843452
All that he said I did, including change sendmail name to block php files to send mail.
But unfortunately (I didn't thought about that) this has disabled all the forms from the websites on the VPS to be able to send mails...
I don't know if I rename sendmail again it would make spammer file to work and send again, but there is some way to keep php forms from websites work and solve this spam matter?
I'm willing to find the files that are sending spam from the server in some website to delete them and close this damn problem, also found some reference about a process running under the name of "ps" and that could be a file sending spam. I really found 2 processes coming from files on the websites with that name, but when I managed to find the files and delete them, I found nothing. Some files on the directory was kinda suspicious (checked them under ssh and saw that they mattered nothing to wordpress) and deleted them.
What I want to know about it is: This action of deleting the files will solve the problem completely or there is some specific action needed?
I need to solve this spam problem and keep php forms running. Those spam being sent are making the VPS to exceed the relay quota and my client become unable to use mail.
Now the problem is solved because of that sendmail change but I need forms to run...
Any help?
My VPS was having some trouble with spam mails sent through a infected archive on one of the websites I have on him.
So I searched for some solutions and found that one:
http://forums.cpanel.net/f43/setup-...-hour-per-domain-users-201222.html#post843452
All that he said I did, including change sendmail name to block php files to send mail.
But unfortunately (I didn't thought about that) this has disabled all the forms from the websites on the VPS to be able to send mails...
I don't know if I rename sendmail again it would make spammer file to work and send again, but there is some way to keep php forms from websites work and solve this spam matter?
I'm willing to find the files that are sending spam from the server in some website to delete them and close this damn problem, also found some reference about a process running under the name of "ps" and that could be a file sending spam. I really found 2 processes coming from files on the websites with that name, but when I managed to find the files and delete them, I found nothing. Some files on the directory was kinda suspicious (checked them under ssh and saw that they mattered nothing to wordpress) and deleted them.
What I want to know about it is: This action of deleting the files will solve the problem completely or there is some specific action needed?
I need to solve this spam problem and keep php forms running. Those spam being sent are making the VPS to exceed the relay quota and my client become unable to use mail.
Now the problem is solved because of that sendmail change but I need forms to run...
Any help?
