Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

help~ my mail server got attacked

Discussion in 'E-mail Discussion' started by goodgbb, Sep 27, 2005.

  1. goodgbb

    goodgbb Well-Known Member

    Joined:
    Aug 15, 2005
    Messages:
    75
    Likes Received:
    0
    Trophy Points:
    156
    Location:
    Thailand
    Dear Helpers

    My mail server (exim 4.52) got attacked by using random senders & random receivers.
    He's also attached some viruses to emails.
    I've been banned his ip address. I'm afraid that he'll use proxy or socks then do it again.

    How do I protect my mail server?

    pls help me..
    Thank You from my heart :)

    #a part of reject logs

    2005-09-26 15:24:19 H=(xxx.com) [xxx.185.132.xxx] sender verify fail for <register@xxx.com>: no such address here
    2005-09-26 15:24:19 H=(xxx.com) [xxx.185.132.xxx] F=<register@xxx.com> rejected RCPT <smith@xxx.com>: Sender verify failed
    2005-09-26 15:30:07 H=(xxx.com) [xxx.185.132.xxx] sender verify fail for <administrator@xxx.com>: no such address here
    2005-09-26 15:30:07 H=(xxx.com) [xxx.185.132.xxx] F=<administrator@xxx.com> rejected RCPT <ted@xxx.com>: Sender verify failed
    2005-09-26 15:30:11 H=(xxx.com) [xxx.185.132.xxx] sender verify fail for <administrator@xxx.com>: no such address here
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 goodgbb, Sep 27, 2005
    Last edited: Sep 27, 2005
  2. ramprage

    ramprage Well-Known Member

    Joined:
    Jul 21, 2002
    Messages:
    655
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    Canada
    Install a virus scanner - well since most of the viruses are for windows, its good to have a virus scanner on your linux box to protect the home users.

    ClamAV, also try Mailscanner and the dictionary attack rules. I personally don't recommend MailScanner as it's a resource hog.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 ramprage, Sep 27, 2005
  3. danielws

    danielws Member

    Joined:
    Sep 1, 2005
    Messages:
    20
    Likes Received:
    0
    Trophy Points:
    151
    Use...

    BFD (that bans exim attempts like that)

    http://www.rfxnetworks.com/proj.php

    Integrate BFD with iptables or use it with APF
     
    #3 danielws, Sep 27, 2005
(You must log in or sign up to post here.)
Loading...
Similar Threads - help~ mail server
  1. Rajesh Chauhan

    Setup cron to delete Exim Mail Queue

    Rajesh Chauhan, Jan 18, 2019 at 4:07 AM, in forum: E-mail Discussion
    Replies:
    5
    Views:
    122
    cPanelLauren
    Jan 18, 2019 at 3:13 PM
  2. philquad

    Problem Setting up Email Account

    philquad, Jan 17, 2019 at 11:59 PM, in forum: E-mail Discussion
    Replies:
    2
    Views:
    170
    philquad
    Jan 18, 2019 at 5:02 PM
  3. Naila

    Gmail SMTP For External outgoing mail server

    Naila, Jan 17, 2019 at 5:26 AM, in forum: E-mail Discussion
    Replies:
    2
    Views:
    169
    Naila
    Jan 19, 2019 at 4:36 AM
  4. Fresh Studio

    SMTP error from remote mail server after pipelined mail error

    Fresh Studio, Jan 16, 2019 at 4:00 PM, in forum: E-mail Discussion
    Replies:
    1
    Views:
    165
    cPanelLauren
    Jan 18, 2019 at 12:52 PM
  5. gosvic

    Hide link "Manage Suspension" in Email Accounts

    gosvic, Jan 16, 2019 at 12:10 PM, in forum: E-mail Discussion
    Replies:
    1
    Views:
    142
    cPanelLauren
    Jan 18, 2019 at 9:22 AM

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice