find out the sender and receiver email id?

[imran_khan]

Hello,

As per below mail log, " how to find out the sender and receiver email id"?

# exigrep 1VGXGZ-0007oW-FK /var/log/exim_mainlog
2013-09-02 12:46:15 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1VGXGZ-0007oW-FK

2013-09-02 12:46:15 1VGXGZ-0007oW-FK <= [email protected] H=cpe-10-10-10-10.tx.res.rr.com [10.10.10.10]:56466 P=esmtp S=6084 [email protected] T="Victoria Carpenter commented on your status" for [email protected]
2013-09-02 12:46:15 1VGXGZ-0007oW-FK => evktechn <[email protected]> R=localuser T=local_delivery
2013-09-02 12:46:15 1VGXGZ-0007oW-FK Completed

Thanks,
Imran Khan.

 

[24x7server]

Hello,

Your [email protected] email account is sending the mail to [email protected] email account.

 

[cPanelMichael]

Hello

The following arrow symbols are useful:

<=
=>

As you can see, it uses "=>" for outgoing email to "[email protected]".

Thank you.

 

[imran_khan]

Hello Michael,

One of my customer sent lots of mails from the server.
I want to find out which mails are spam or not? How can I do this?

Thanks,
Imran Khan.

 

[cPanelMichael]

One of my customer sent lots of mails from the server.
I want to find out which mails are spam or not? How can I do this?

You will find several threads on our forums related to this. Try searching the forums for "detect spam" or similar terms and there will be several results to look through.

Thank you.

 

[imran_khan]

Hello Michael,

Thanks for the reply. I can easily find out/catch the spammer at run time. Means when spammer sending spam mails that time I can monitor the mail queue, check the message header and body using message Id but when someone domain sending spam mails and I am not monitoring queue or not in office. Then how to check the mail header and body of that mails. I hope you understand my query.

Thanks,
Imran Khan.

 

[cPanelMichael]

You could try searching for the specific email via:

"WHM Home » Email » Mail Delivery Reports"

Thank you.

 

[imran_khan]

Hello Michael,

There is no “Mail Delivery Reports” option. Below options are found in WHM Home > Email >

Mail Directory Conversion System
Mail Queue Manager
Mail Troubleshooter
Repair Mailbox permissions
View Mail Statistics
View Relayers

Version:- cPanel 11.25.0-S46156 - WHM 11.25.0 - X 3.9

Thanks,
Imran Khan.

 

[cPanelMichael]

That is a very outdated version of cPanel. It's end of life, and no longer supported. Please update cPanel to version 11.38.

Thank you.

 

[imran_khan]

Hello Michael,

I understand your concern. This server is in production so I cannot update Cpanel.
Please suggest me on my spammer finder query.

Thanks,
Imran Khan.

 

[ThinIce]

You may want to review Security | cPanel, Inc. - not directly related to instances of spamming perhaps.

I honestly can't remember when the options were introduced, but if you're concerned with blocking large sends that may be spam you can enable checks like max messages that can be sent per hour / max failures per hour in tweak settings.

There is also the option to scan outgoing messages with spam assassin in the exim config

SpamAssassin Options I can't say I've ever actually tried that one so unsure if it can cause chaos

 

[cPanelMichael]

I understand your concern. This server is in production so I cannot update Cpanel.
Please suggest me on my spammer finder query.

The fact that this is a production server is actually more of a reason to update. Newer versions of cPanel patch previously known bugs and security vulnerabilities. In addition, there are several new features since version 11.25 that are available to combat SPAM. If you are truly against updating, you can still search for email activity in the following log file:

/var/log/exim_mainlog

Thank you.