Preventing cPanel users from spamming

R

robotwink

Registered
Sep 2, 2009
4
0
51
Hello,

I have a shared hosting server and one of my servers was recently compromised and used to send SPAM therefore it was banned from all major email service providers, including Hotmail, Yahoo! and Gmail.

Only one of the sites on the server was compromised and darkmailer.pl, dm.cgi, dosja.cgi etc was uploaded and without causing any load or something that can be noticed the sever was banned!

Could you please tell me how can I prevent this from happening again?

Thanks.
 
brianoz

brianoz

Well-Known Member
Mar 13, 2004
1,146
7
168
Melbourne, Australia
cPanel Access Level
Root Administrator
Do the following:

  • install CSF and ensure it is preventing outgoing connections on port 25
  • turn on the max emails per hour feature of cpanel
  • install suphp/suexec (may need to fix permissions)

These three will solve most of your problem immediately. CSF will prevent outgoing direct-to-port-25 connections, and the max emails per hour feature will limit spam sent through exim.

You should also sign up with the feedback loops for hotmail and yahoo as they'll send you emails if anyone sends spam from your IP addresses.
 
Spiral

Spiral

BANNED
Jun 24, 2005
2,018
8
193
robotwink said:
Hello,

I have a shared hosting server and one of my servers was recently compromised and used to send SPAM therefore it was banned from all major email service providers, including Hotmail, Yahoo! and Gmail.

Only one of the sites on the server was compromised and darkmailer.pl, dm.cgi, dosja.cgi etc was uploaded and without causing any load or something that can be noticed the sever was banned!

Could you please tell me how can I prevent this from happening again?

Thanks.
Click to expand...
There is a long list of measures you can take to prevent this though I am
reluctant to publicly post some of the "better" techniques that I would use
to curb this kind of issue from happening for what should be obvious reasons.

Talk to me privately and I'll be glad to give you a few tips and pointers.

If you need a deeper helping hand, I'd also be further available as well to
review your server and help you get things much better secured.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
T A method of preventing spam Email 4
PeteS Preventing user password change in webmail Email 2
kcpilot1420 Is cPanel preventing another script on server from sending mail? Email 1
M Preventing cPanel from overwriting custom Exim ACL Email 2
U Preventing CPanel Updating Squirrelmail Email 8
Similar threads
A method of preventing spam
Preventing user password change in webmail
Is cPanel preventing another script on server from sending mail?
Preventing cPanel from overwriting custom Exim ACL
Preventing CPanel Updating Squirrelmail
Top Bottom