The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Why is my mail server an open relay?

Discussion in 'E-mail Discussions' started by jez9999, Apr 8, 2009.

  1. jez9999

    jez9999 Well-Known Member

    Joined:
    Jun 10, 2005
    Messages:
    87
    Likes Received:
    0
    Trophy Points:
    6
    http://verify.abuse.net/relay.html

    This site tells me, when I enter my domain name, that my mail server appears to be an open relay. In addition, when I register for abuse.net and try and get it to send an e-mail to me, that e-mail successfully arrives. This would suggest that my host is acting as an open relay!

    As cPanel is what writes exim.conf (I make changes, they're liable to be overwritten), I'm guessing it's cPanel's responsibility to tighten this up. Why on earth is my host acting as an open relay? How can I stop it with cPanel?
     
  2. servertechs

    servertechs Active Member

    Joined:
    Aug 24, 2008
    Messages:
    38
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    India
    You need to check this with your hosting provider as cpanel server has open relay closed by default.
     
  3. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    cPanel/WHM does not natively support open relaying. However, if you are logged in successfully via POP3 or IMAP, the workstation you are connecting from is whitelisted for sending mail for 30 minutes, meaning SMTP authentication will not be required for sending email during that period of time. Many often mistake this for open relaying.

    If this is not the scenario you are experiencing, I recommend you let our technical analysts take a look at your server as being an open relay can cause problems such as your server becoming blacklisted for sending spam.
     
  4. djmerlyn

    djmerlyn Well-Known Member

    Joined:
    Aug 31, 2004
    Messages:
    203
    Likes Received:
    1
    Trophy Points:
    16
    For the first time today, PCI failed me because port 25, port 465, and port 587 are open relays.

    A month ago when I was scanned I didn't have any open relays.

    If cpanel is not an open relay by default, then where should a cpanel user/operator check to make sure that indeed there is nothing wrong with the cpanel configuration and it is not an open relay?

    Pretty tough to tell for sure when PCI fails you, but all available tests show it as being OK...surely McAfee can't be that faulty lol;
    open relay test - Google Search
     
  5. britsenigma

    britsenigma Well-Known Member

    Joined:
    Dec 14, 2008
    Messages:
    85
    Likes Received:
    0
    Trophy Points:
    6
    don't get me started with mcafee...
     
  6. djmerlyn

    djmerlyn Well-Known Member

    Joined:
    Aug 31, 2004
    Messages:
    203
    Likes Received:
    1
    Trophy Points:
    16
    :D I know huh, still begs the question who is right though :confused:
     
  7. Spiral

    Spiral BANNED

    Joined:
    Jun 24, 2005
    Messages:
    2,023
    Likes Received:
    7
    Trophy Points:
    0
    Amen, brother! :D

    To jez9999, there are about a million ways your server could be misconfigured or
    possibly even compromised with abusive scripts that could lead to an open relay
    type condition. Incidentally, your receiving mail from anyone is no test or
    confirmation of any open relay. That question is only answered if non-authenticated
    users from outside your server can send to destination also outside your server.
     
    #7 Spiral, Jun 26, 2009
    Last edited: Jun 26, 2009
  8. kran

    kran Well-Known Member

    Joined:
    Jul 5, 2003
    Messages:
    74
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Colombia
    cPanel Access Level:
    Root Administrator
    All my servers went open Relay after I upgaded to Last Stable release.
     
  9. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    By this statement, do you mean that your servers were reported as being an open relay or do you mean your servers actually are an open relay (anyone can send mail via your server without any authentication)?
     
  10. kran

    kran Well-Known Member

    Joined:
    Jul 5, 2003
    Messages:
    74
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Colombia
    cPanel Access Level:
    Root Administrator
    Sorry false alarm

    It was just my firewall (I upgrade Cpanel and the firewall) and it was giving me RELAY alerts after a successful authentication.
     
Loading...

Share This Page