Well-Known Member
May 15, 2012
Cape Town, South Africa
cPanel Access Level
Root Administrator
Hi guys,

I've just noticed over 8000 emails being sent to random yahoo addresses,etc. and error messages coming through to admin account with the following:

Time: Fri Jul 5 17:17:41 2013 +0200
Type: AUTHRELAY, Remote IP - (UA/Ukraine/-)
Count: 107 emails relayed
Blocked: No

Any idea how to stop this from happening completely.

Here is what I've done so far.

1. Enabled DKIM on all accounts
2. Turned off - Allow Plaintext Authentication (from remote clients)
3. Set LFD to block it after a certain number via CSF
4. Disabled domain account holder password to login into any email accoutn via Tweak Settings.

Anything else?