Stop cpanelusername@hostname.tld from sending mail ?

My server is used for hosting CMS like wordpress and joomla, as most of the clients are using plugins and themes which are not being downloaded from authorized websites lots of spam mails are found being generated from self triggered spam bot scripts. I have managed to enable detailed exim log and I am able to find the exact script which has caused the issue each time. Meanwhile is it possible to stop these malicious scripts only from spamming

What I want to do is stop mails which are being of the form "cpanelusername@hostname.tld" ? ie stop mailing from the scripts that are not using proper authentication to sent mails
Is it possible with out disabling php mail () ?

I am not supposed to use any kind of third party spam detection software’s. I have done all recommended things by cpanel to prevent email abuse

url https://documentation.cpanel.net/display/CKB/How+to+Prevent+Email+Abuse

I need some mechanism in exim to stop this. Is it possible ?

 

Hi,

Thanks for the update. I have already done your suggestions and I am aware about all these. I have already disabled mail function in the server meanwhile what i need is to stop mails which are being of the form "cpanelusername@hostname.tld" most probably the mails which are being sent via php scripts in a "suphp" server.

 

What I want to do is stop mails which are being of the form "cpanelusername@hostname.tld" ? ie stop mailing from the scripts that are not using proper authentication to sent mails.


Is there any mechanism in exim ? While researching in this topic , I met with the below update.

Go to the location WHM >> Service Configuration >> Exim Configuration Manager

Under the section filer, you'll see the file used by exim for filtering. Open that file from the backend of your server and add the below piece of code in the end.


if first_delivery
and ( (“$h_from:” contains “emailtoblock@domainname.com”)
)
then fail
endif


Restart exim


Is it possible to modify the above if con and prevent all users from sending mail via php script ?

 

Hi Michael,

As I have stopped mail function no mails are being sent from the server meanwhile I would like to know if there is some other way to disable "cpanelusername@hostname.tld" from sending mails with out disabling php mail () in the server.

 

Hi Michael,

Thanks for the update, the below post contains answers for my questions.

https://forums.cpanel.net/threads/how-do-i-block-one-domain-from-sending-email-from-my-server.223731/#post920912

I am unable to find answer for my main question. I am not supposed to disable mail sending for a single domain. I just wanted to disable mails being sent using php scripts which are of the form
cpanelusername@hostname.tld. All other mails of the account sent using authentication via webmail, thunderbird must work fine. Is there any solution for this ?