Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Disable localrelay without authentication- how to do it and should I do it?

Discussion in 'Security' started by maestroc, Sep 24, 2014.

  1. maestroc

    maestroc Well-Known Member

    Aug 23, 2012
    Likes Received:
    Trophy Points:
    cPanel Access Level:
    Reseller Owner
    I run a very small VPS with a few clients that I have developed sites for. I've discovered that at least one of them is infected and sending out spam. I discovered this when I started getting emails like this:

    lfd on LOCALRELAY Alert for vibre

    Time: Wed Sep 24 09:28:45 2014 -0700
    Type: LOCALRELAY, Local Account - vibre
    Count: 101 emails relayed
    Blocked: No

    While I work to figure out where the infected files are can someone tell me how I can disable the ability for scripts to send email without authenticating via SMTP?

    Are there any downsides to doing this? What would you do if you were in this position?

    Thank you!

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice