Spam problem

[eConcept-Web]

Hi, since today, we received many attack for spam. Somebody use our server to send mail. Some body have an idea how can I protect this. Can an authorisation username and password for sending mail will prevent that. Thx all.

 

[nobaloney]

By default DirectAdmin doesn't allow mail to be relayed through the server unless the sender is authenticated. You can easily enough turn on username/password authentication if you want, but DirectAdmin also uses Pop before SMTP authentication to make life easier for your users.

If your server's been sending spam, lack of authentication is NOT the reason unless you made changes to allow it in your exim.conf file.

While you havent given enough information for anyone to say definitively, you should also make sure that you haven't put any domains on your server into the /etc/virtual/whitelist_domain file, as that's the easiest way to break email security and allow people who forge return addresses on your server to use it to spam.

Jeff

 

[Internet54]

Most spam is sent via Sendmail, as it is easier to access.

 

[nobaloney]

BS. Or in more polite terminology: Please document.

Jeff

 

[streamservice]

Look for mailforms and block them for the moment (or block the mail function in php). This will maybe reduce the amount of spam on your server.