1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Help w/ Possible Spam Issue

Discussion in 'Plesk for Linux - 8.x and Older' started by C4talyst, Jun 9, 2009.

  1. C4talyst

    C4talyst Guest

    0
     
    Hello,

    I've inherited a plesk 8.6 server recently and in the past week it's been exhibiting slowness. It has around 300 websites on it and "top" has been showing me a lot of mail related activity (qmail, spamd, etc).

    Today I noticed there were 9000 mails in the queue. Usually a busy day sees around 100-200 mails in the queue at any given time. I started doing some digging on the forums here and have some questions about my findings.

    I ran /var/qmail/bin/qmail-qread and am seeing a lot of activity for non-existent email accounts that seem to follow a uniform naming convention. Here's a snippet:

    What's going on here? The 54-thampl user does not exist, neither do the other odd named users listed here.
     
  2. Nataliya Zagr

    Nataliya Zagr Regular Pleskian

    21
    87%
    Joined:
    Apr 14, 2009
    Messages:
    242
    Likes Received:
    0
    Hello,

    First check that all domains have the option 'Mail to non-existing user' set to 'reject' but not to 'forward'. You can change this setting to all domains using "Group Operations" in the "Domains" tab in Parallels Plesk Control Panel. The option "Reject mail to nonexistent user" is available since Parallels Plesk Panel 7.5.3.

    Also, please, check that all the IPs and networks in the white lists are reliable and familiar to you.

    If the queue has too many messages, try to discover the source of SPAM. To do it, please, perform the steps provided at the following article:

    http://kb.odin.com/en/766
     
Loading...