• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Question Intruder connected to my vm by smtp

J

Javi

New Pleskian
hi

Today I had to throw an intruder in my vm that was connected by smtp, how do I have to do so that it does not happen again

Thanks
 
It is common that attackers try to login to mailboxes to send spam through them, so you normally see many connects and login attempts from a variety of ip addresses. The default solution for this is to activate the Fail2Ban Postfix and Dovecot jails. They will catch failed login attempts and block attacker IPs.

However, if you found a successful login attempt by a foreign IP, you need to change the password of that mailbox.
 
thank you Peter for the answer.
with the netstat -putona command I saw the connection established with the smtp program
 
I do not believe that the intruder entered my mailbox, however with the netstate command I see that there is a connection established by the intruder with the smtp port and I do not know what consequences this connection may have
 
You must log in or register to reply here.

Similar threads

R
Question HA Plesk with VM's inside redhat virtulization
Replies
0
Views
358
ramuhammad
R
carlsson
Issue Really strange problem – I can't use my SMTP server intermittently
Replies
2
Views
270
carlsson
carlsson
A
Resolved Disk space on Plesk
Replies
6
Views
664
Axx67
A
P
Resolved Force Plesk to use port 25 alternative (Digital Ocean refuses to open 25)
Replies
4
Views
404
Paul Larson
P
S
Issue SMTP/Qmail stop working suddenly without any cause
Replies
3
Views
514
Stephen_Stephen
S
Back
Top