Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Someone spamming from my server

Discussion in 'General Discussion' started by paulm, Nov 30, 2006.

  1. paulm

    paulm Well-Known Member

    Oct 13, 2003
    Likes Received:
    Trophy Points:
    I got a report of someone spamming from my server, I was unable to find any insecure scripts or anything in the logs that would help me.

    I have two servers:

    Server one runs ns1/
    Server two runs ns3/

    The reports are coming from server two but when I look at the maillog grepping for the email address in the reported emails and found they are somehow originating from my server one, or at least it looks like that.. Here is an example of what I am seeing in the exim_rejectlog

    2006-11-25 01:47:21 (localhost.localhost) [] F=<> rejected RCPT <>: (localhost.localhost) [] is currently not permitted to relay through this server. Perhaps you have not logged into the pop/imap server in the last 30 minutes or do not have SMTP Authentication

    My confusion is that is not even on server two which is getting the complaints it is on server one.

    Both servers are fairly old, I keep them updated and pretty secure and it is mostly freinds on both these servers so there have been no new people on either server in a few years so I do not think it is an issue with a freind of mine having an insecure script or something, but probably something I have not secured properly.

    Any help would be greatly appreciated.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice