The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

strange exim failed messages

Discussion in 'E-mail Discussions' started by epanagio, Aug 20, 2014.

  1. epanagio

    epanagio Well-Known Member

    Joined:
    May 26, 2012
    Messages:
    50
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Website Owner
    I am trying to understand the following message I saw in the exim logs.
    The top of the message says:
    Because users I do not expect many emails leaving the server I have set a limit.

    Then it continues:

    I am the only one who has access to this server but I do host a few "simple" websites.
    Does this mean that the email came to my server from nat-4.kem.sibset.net?
    Also, this is who sent it and it should of went:
    but how did I get this message in my log?

    Do I have a problem here?
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    I suggest reviewing /var/log/exim_mainlog to see what type of email activity is occurring on your system. Look to see if any of the emails are coming from sources other than yourself. The following document may also help you:

    How to prevent email abuse

    Thank you.
     
  3. epanagio

    epanagio Well-Known Member

    Joined:
    May 26, 2012
    Messages:
    50
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Website Owner
    OY!!

    First of all let my apologize to the hundred of thousands of people who received spam from my server. SORRY!

    Apparently because of the heartbleed bug the server was compromised and I "they" were sending spam my the droves. The server software has been updated and the issue is resolved.

    I hope this message helps others.

    Evan
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,723
    Likes Received:
    660
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Please keep in mind that if your server has been exploited and root access has been obtained, then nothing short of reinstalling the OS/cPanel and restoring the accounts from backup archives is going to be a suitable method of cleaning the server.

    Thank you.
     
Loading...

Share This Page