• Plesk Uservoice will be deprecated by October. Moving forward, all product feature requests and improvement suggestions will be managed through our new platform Plesk Productboard.
    To continue sharing your ideas and feedback, please visit features.plesk.com

qmail script abuse

Z

zonem0nkey

Guest
I believe someone or some script out there is abusing a email script that I have in one of my sites. I only have about a few email forms available on my site, but even after deleting and removing them, I'm seeing this script show up in my /usr/local/psa/var/log/maillog everytime.

1) I've turned off smtp relay via plesk.
2) I read some where that the maillog tells you the smtp messages that are being sent/received locally, is this correct?
3) Is there anything I can to find out which script/page is being abused?
 
check /var/tmp and /tmp/ for "suspect" files... some times they upload scripts there.
also do you have any open source cms or forums? they use to have some components with security wholes that users use to send emails.
 
You must log in or register to reply here.

Similar threads

M
Question System account sending email through smpt relay but no configuration present
Replies
3
Views
1K
maratn
M
J.Wick
Issue External Email Stopped Working after Upgrading to Plesk Obsidian 18.0.70 Update #2
Replies
1
Views
476
J.Wick
J.Wick
nisamudeen97
Question Unable to handle email bounce back of spoof email with sender and receiver the same
Replies
0
Views
410
nisamudeen97
nisamudeen97
J
Question Force same domain emails to use MX records
Replies
14
Views
16K
Raul A.
R
A
Issue Emails are not reaching the recipients
Replies
1
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
Back
Top