Unable to delete the main email account
- Thread starter nango
- Start date
, any main email account try to send bulk. and I'm suspending users one by one, whats the solution? why and how main accounts are send huge bulk spam?
nobaloney
NoBaloney Internet Svcs - In Memoriam †
If the email is really coming from the user email account (not just someone spoofing their address), then then user (account owner) is causing the spam, either intentionally or because she/he has an exploited program running on the site.
So first, make sure you know the email is coming from the account itself and not just from someone spoofing the address (the log files will tell you), and if so, suspend the user.
Jeff
So first, make sure you know the email is coming from the account itself and not just from someone spoofing the address (the log files will tell you), and if so, suspend the user.
Jeff
floyd
Verified User
- Joined
- Mar 29, 2005
- Messages
- 6,251
Yes they can. They just have to use the SMTP method.
nobaloney
NoBaloney Internet Svcs - In Memoriam †
What should be an option? Deleting the default mailbox? You can do that now. Simply delete the user and the mailbox goes away with it. If you just log in through SSH you can of course delete the default mailbox, but you should know that every linux mail system will automatically create a new mailbox for the default user if it's not already there, the first time an email is received.
So do you mean set it up for local delivery only? What do you mean by local delivery? So it can only send locally? Or that it could only receive locally? Be prepared to discuss how this would or wouldn't affect email to/from the server.
And remember that many clients actually use the default email account.
Jeff
So do you mean set it up for local delivery only? What do you mean by local delivery? So it can only send locally? Or that it could only receive locally? Be prepared to discuss how this would or wouldn't affect email to/from the server.
And remember that many clients actually use the default email account.
Jeff
floyd
Verified User
- Joined
- Mar 29, 2005
- Messages
- 6,251
Please explain how to do this in exim. Also please explain how this has anything to do with the OP.
Jeff,
I'm talking about receiving local mail. What I mean as an "option" is to cater for those who want to use it.
In sendmail you can have mailbox users that receive local only email. This is done in the Local Domains (CW), and by configuring the MC file.
I'm not sure about Exim, but I have found there's a fair bit of functionality within the access control list (ACL). For example - there's condition and modifier processing:
accept senders = ${lookup{$host_name}lsearch{/some/file}{$value}fail}
and then there's the deny:
deny hosts = ...
and this of course depends on the positioning (order) of the ACL statements.
However, I'm new to Exim - and this is just a quick scan of the documentation.
I'm talking about receiving local mail. What I mean as an "option" is to cater for those who want to use it.
In sendmail you can have mailbox users that receive local only email. This is done in the Local Domains (CW), and by configuring the MC file.
I'm not sure about Exim, but I have found there's a fair bit of functionality within the access control list (ACL). For example - there's condition and modifier processing:
accept senders = ${lookup{$host_name}lsearch{/some/file}{$value}fail}
and then there's the deny:
deny hosts = ...
and this of course depends on the positioning (order) of the ACL statements.
However, I'm new to Exim - and this is just a quick scan of the documentation.
Thanks, can you please give me a sample of php for smtp method, with disabled phpmail.?
How is it?
The topic is about disabling/deleting the main mailbox account.
If there was a feature that prevented internet-bound emails on this account there would have not been any issue with the said spamming.
In many situations the main user account is setup by WHMCS - which might call the DA user something like "domainuser" - and most emails will be "fred@", "Bill@" etc - so it is often they wont use this account.
The topic is about disabling/deleting the main mailbox account.
If there was a feature that prevented internet-bound emails on this account there would have not been any issue with the said spamming.
In many situations the main user account is setup by WHMCS - which might call the DA user something like "domainuser" - and most emails will be "fred@", "Bill@" etc - so it is often they wont use this account.
floyd
Verified User
- Joined
- Mar 29, 2005
- Messages
- 6,251
The issue is about spam being sent FROM the mail email account.
If it was inbound that was the problem then it would be easily fixed by null routing the email.
floyd
Verified User
- Joined
- Mar 29, 2005
- Messages
- 6,251
No but then again I have only been doing this since 1995 so you probably know more than me.
In and Out are not the same thing. Using a mail account to send is totally different than that same mailbox receiving.
And if you read the thread carefully it was not even the mail account being used to send the spam. It was a php exploit sending mail in the user's name. The mail account was not touched and in the end was not relevant.