The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Domain getting 180,000+ emails

Discussion in 'E-mail Discussions' started by KatieBuller, Jun 1, 2005.

  1. KatieBuller

    KatieBuller BANNED

    Joined:
    May 10, 2005
    Messages:
    65
    Likes Received:
    0
    Trophy Points:
    0
    I have a user getting
    180,000+ emails
    # cat /var/log/exim_mainlog | grep domain | wc -l
    182786

    How can I stop this its overloading my server

    I have Dictionary attack block and SPF installed for this domain.
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,474
    Likes Received:
    202
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Easy answer, kill that account or at least the email address. That's way over the line of a problem I think.
     
  3. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    You should also ensure that you have the Default Address for the domain set to :fail: for the dictionary attack ACL to work. It won't stop the server getting the SMTP connections, but will stop it receiving and processing the emails. You either have to ride it out, or as Infopro says, if it's unbearable you need to either ditch the domain sadly, or use a 3rd party email scanning service and let them take the strain.
     
  4. haze

    haze Well-Known Member

    Joined:
    Dec 21, 2001
    Messages:
    1,550
    Likes Received:
    3
    Trophy Points:
    38
    As well as installing Chirpy's dictionary attack protection I would suggest implenting at very least this option . You may also want to enable spam assassins learning feature or set spam traps to send the checksums to Razor, DCC, Pyzor, Spamcop or similar. Try to ensure that you don't submit any legit email however as that can greatly increase the chances of false possitives, as well as increase your chances of being banned from the submission services completely.

    Other options include http://www.spamlinks.net/filter.htm.
     
Loading...

Share This Page