find out the sender and receiver email id?

imran_khan

Well-Known Member
Jun 10, 2013
154
1
16
cPanel Access Level
Root Administrator
Hello,

As per below mail log, " how to find out the sender and receiver email id"?

# exigrep 1VGXGZ-0007oW-FK /var/log/exim_mainlog
2013-09-02 12:46:15 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1VGXGZ-0007oW-FK

2013-09-02 12:46:15 1VGXGZ-0007oW-FK <= [email protected] H=cpe-10-10-10-10.tx.res.rr.com [10.10.10.10]:56466 P=esmtp S=6084 [email protected] T="Victoria Carpenter commented on your status" for [email protected]
2013-09-02 12:46:15 1VGXGZ-0007oW-FK => evktechn <[email protected]> R=localuser T=local_delivery
2013-09-02 12:46:15 1VGXGZ-0007oW-FK Completed

Thanks,
Imran Khan.
 

imran_khan

Well-Known Member
Jun 10, 2013
154
1
16
cPanel Access Level
Root Administrator
Hello Michael,

One of my customer sent lots of mails from the server.
I want to find out which mails are spam or not? How can I do this?

Thanks,
Imran Khan.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,202
363
One of my customer sent lots of mails from the server.
I want to find out which mails are spam or not? How can I do this?
You will find several threads on our forums related to this. Try searching the forums for "detect spam" or similar terms and there will be several results to look through.

Thank you.
 

imran_khan

Well-Known Member
Jun 10, 2013
154
1
16
cPanel Access Level
Root Administrator
Hello Michael,

Thanks for the reply. I can easily find out/catch the spammer at run time. Means when spammer sending spam mails that time I can monitor the mail queue, check the message header and body using message Id but when someone domain sending spam mails and I am not monitoring queue or not in office. Then how to check the mail header and body of that mails. I hope you understand my query.

Thanks,
Imran Khan.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,202
363
You could try searching for the specific email via:

"WHM Home » Email » Mail Delivery Reports"

Thank you.
 

imran_khan

Well-Known Member
Jun 10, 2013
154
1
16
cPanel Access Level
Root Administrator
Hello Michael,

There is no “Mail Delivery Reports” option. Below options are found in WHM Home > Email >

Mail Directory Conversion System
Mail Queue Manager
Mail Troubleshooter
Repair Mailbox permissions
View Mail Statistics
View Relayers

Version:- cPanel 11.25.0-S46156 - WHM 11.25.0 - X 3.9

Thanks,
Imran Khan.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,202
363
That is a very outdated version of cPanel. It's end of life, and no longer supported. Please update cPanel to version 11.38.

Thank you.
 

imran_khan

Well-Known Member
Jun 10, 2013
154
1
16
cPanel Access Level
Root Administrator
Hello Michael,

I understand your concern. This server is in production so I cannot update Cpanel.
Please suggest me on my spammer finder query.

Thanks,
Imran Khan.
 

ThinIce

Well-Known Member
Apr 27, 2006
352
9
168
Disillusioned in England
cPanel Access Level
Root Administrator
You may want to review Security | cPanel, Inc. - not directly related to instances of spamming perhaps.

I honestly can't remember when the options were introduced, but if you're concerned with blocking large sends that may be spam you can enable checks like max messages that can be sent per hour / max failures per hour in tweak settings.

There is also the option to scan outgoing messages with spam assassin in the exim config

SpamAssassin Options I can't say I've ever actually tried that one so unsure if it can cause chaos ;)
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,202
363
I understand your concern. This server is in production so I cannot update Cpanel.
Please suggest me on my spammer finder query.
The fact that this is a production server is actually more of a reason to update. Newer versions of cPanel patch previously known bugs and security vulnerabilities. In addition, there are several new features since version 11.25 that are available to combat SPAM. If you are truly against updating, you can still search for email activity in the following log file:

Code:
/var/log/exim_mainlog
Thank you.