HiWhile we wait for the experts to come along, do you recognise the 195.201.x.x IP address.
Do you have SPF and DKIM configured for your domain.
its already set to FailLets see if you are an open relay.
Maybe check the following in WHM.
Tweak Settings >> Mail >> Initial default/catch-all forwarder destination
Change this to 'Fail'
HiI had another thought:
Check that no-one has configured a forwarder that shouldn't be there - we have seen several cases of email accounts having been hacked and forwarders set up for the purpose of spamming from supposedly legitimate accounts.
You might also want to check that your users have not had any scripts injected or uploaded to their /public_html space that might trigger a mail event from a specially crafted browser request.
from where i can turn on Authentication ?To add, turn on your Authentication column and it was tell you "unauthorized", "localdelivery" or "forwarder".
In the evidence you've shown so far, attempts to use your server as a relay are being rejected. This is correct. Spammers will continue to try, but it won't work. So unless you show evidence of spam emails being sent through your server by a local account or script. Not all errors in the mail log are bad. Some and many in your case are indicating the correct response to relay attempts.Hi
is there possible completely disable sending email from Remote user?
because i feeling someone use our mail sevrer as remote
|Thread starter||Similar threads||Forum||Replies||Date|
|D||SMTP error from remote mail server after end of data: 550 Message contained spam content (antispamcloud.spam.spmdmjnk06)||1|
|R||Spamassassin detecting local e-mail as remote||1|
|M||Exclude remote anti-spam appliance from SA scans?||5|
|Using cPanel as a spam filter for remote mail exchangers||6|
|D||Customer sending spam via -remote- user, but how?||11|
|SMTP error from remote mail server after end of data: 550 Message contained spam content (antispamcloud.spam.spmdmjnk06)|
|Spamassassin detecting local e-mail as remote|
|Exclude remote anti-spam appliance from SA scans?|
|Using cPanel as a spam filter for remote mail exchangers|
|Customer sending spam via -remote- user, but how?|