• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • Support for BIND DNS has been removed from Plesk for Windows due to security and maintenance risks.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS.

qmail script abuse

Z

zonem0nkey

Guest
I believe someone or some script out there is abusing a email script that I have in one of my sites. I only have about a few email forms available on my site, but even after deleting and removing them, I'm seeing this script show up in my /usr/local/psa/var/log/maillog everytime.

1) I've turned off smtp relay via plesk.
2) I read some where that the maillog tells you the smtp messages that are being sent/received locally, is this correct?
3) Is there anything I can to find out which script/page is being abused?
 
check /var/tmp and /tmp/ for "suspect" files... some times they upload scripts there.
also do you have any open source cms or forums? they use to have some components with security wholes that users use to send emails.
 
You must log in or register to reply here.

Similar threads

J
Question Force same domain emails to use MX records
Replies
14
Views
15K
Raul A.
R
A
Issue Emails are not reaching the recipients
Replies
1
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
B
Question Unable to Send Emails Using PHPMailer on Plesk Server
Replies
4
Views
2K
King555
K
T
Resolved PayPal unable to reach server
Replies
4
Views
894
trippy
T
I
Issue Mail delivery deferred (4.4.2 delivery temporarily suspended)
Replies
1
Views
658
iainh
I
Back
Top