Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

got a user that's having problems with spam mail sent from his account

Discussion in 'E-mail Discussion' started by Hedloff, Aug 6, 2004.

  1. Hedloff

    Hedloff Well-Known Member

    Joined:
    Jun 7, 2004
    Messages:
    135
    Likes Received:
    4
    Trophy Points:
    168
    Location:
    Up north!
    cPanel Access Level:
    DataCenter Provider
    **************
     
    #1 Hedloff, Aug 6, 2004
    Last edited: Aug 20, 2004
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,470
    Likes Received:
    21
    Trophy Points:
    463
    Location:
    Go on, have a guess
    1. Are you seeing bounce messages (i.e. a spam/virus is using their email address in the email header) or are they the original messages coming from your server?

    2. You need to establish whether the emails are being generated locally (e.g. through a script) or remotely (someone has gained access to their account)

    3. If they're being generated locally on your server, then that use most likely has a vulnerable CGI or PHP script in their account
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 chirpy, Aug 6, 2004
  3. Hedloff

    Hedloff Well-Known Member

    Joined:
    Jun 7, 2004
    Messages:
    135
    Likes Received:
    4
    Trophy Points:
    168
    Location:
    Up north!
    cPanel Access Level:
    DataCenter Provider
    The user have changed all password that is possible to change.
    And there are no cgi/php scripts that i can find locally on the server, so i'm kind of stuck here.

    How can i find out if he's bounceing the messages?
    Before it was sending like 2000mails each day, now it's about 150mails.
     
    #3 Hedloff, Aug 9, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - user that's having
  1. yakatz9

    New Thread API for adding External Authentication users

    yakatz9, Jun 20, 2018 at 2:34 PM, in forum: cPanel Developers
    Replies:
    1
    Views:
    15
    yakatz9
    Jun 20, 2018 at 2:35 PM
  2. tyuuu

    mysql_pconnect can not work after change password/username

    tyuuu, Jun 19, 2018 at 9:14 AM, in forum: Database Discussion
    Replies:
    10
    Views:
    53
    cPanelLauren
    Jun 20, 2018 at 9:38 AM
  3. 1968gtcs

    User being blocked because of repeated email login attempts

    1968gtcs, Jun 18, 2018 at 12:15 AM, in forum: E-mail Discussion
    Replies:
    6
    Views:
    109
    cPanelLauren
    Jun 20, 2018 at 9:39 AM
  4. bostondesignz

    database user not showing up in php myadmin

    bostondesignz, Jun 14, 2018 at 10:18 AM, in forum: Database Discussion
    Replies:
    9
    Views:
    87
    cPanelMichael
    Jun 14, 2018 at 12:02 PM
  5. joaosavioli

    How to identify user sending syn tcp outgoing attack?

    joaosavioli, Jun 11, 2018, in forum: Security
    Replies:
    1
    Views:
    55
    cPanelMichael
    Jun 12, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice