The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Outgoing Spam from Server

Discussion in 'E-mail Discussions' started by sahostking, Jul 5, 2013.

  1. sahostking

    sahostking Well-Known Member

    Joined:
    May 15, 2012
    Messages:
    300
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Cape Town, South Africa
    cPanel Access Level:
    Root Administrator
    Hi guys,

    I've just noticed over 8000 emails being sent to random yahoo addresses,etc. and error messages coming through to admin account with the following:

    Time: Fri Jul 5 17:17:41 2013 +0200
    Type: AUTHRELAY, Remote IP - 92.52.162.182 (UA/Ukraine/-)
    Count: 107 emails relayed
    Blocked: No

    Any idea how to stop this from happening completely.

    Here is what I've done so far.

    1. Enabled DKIM on all accounts
    2. Turned off - Allow Plaintext Authentication (from remote clients)
    3. Set LFD to block it after a certain number via CSF
    4. Disabled domain account holder password to login into any email accoutn via Tweak Settings.

    Anything else?

    Thanks
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    I recommend reviewing the email headers of these messages to see if you can determine the source of the messages. The following document also includes some useful information how to prevent email abuse:

    How to: Prevent Email Abuse

    Thank you.
     
Loading...

Share This Page