• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • Support for BIND DNS has been removed from Plesk for Windows due to security and maintenance risks.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS.

Spamattac on server

C

cosito

Guest
Hello,

i got lots of spams in the server-outq from root@www.myserver.com.

I can see this in Plesk->Server->Mail->Mail-Outqueue

How can i avoid this issue.


Here is a header of the Mail:

Received: (qmail 2150 invoked by uid 30); 5 Sep 2006 23:03:21 +0200
Date: 5 Sep 2006 23:03:21 +0200
Message-ID: <20060905210321.2149.qmail@www.myserver.com>
To: the8465@otherdomain_on_my_server.com
Subject: the8465@otherdomain_on_my_server.com
MIME-Version: 1.0
From: ham@www.myserver.com
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain
X-Mailer: AOL 6.0 for Windows CA sub 92
Subject: hand, much of the flavour

In Plesk i can see other receivers than in the header:

[email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

What is this, wher does it come from and how can i avoid this.

Thanks a lot
 
I've had two issues today in which customers "Contact Us" forms on their site where being used to send out spam.

This was on one site with a form-mail type script, someone running X-Cart and another running another web site application like Word Press and other like minded apps.

Removing those vulnerable code pages and contacting the customer fixed the issue.
 
Originally posted by DigitalCrowd

This was on one site with a form-mail type script, someone running X-Cart and another running another web site application like Word Press and other like minded apps.

Removing those vulnerable code pages and contacting the customer fixed the issue.
Click to expand...

Which version of X-Cart was running and what did you remove to solve the problem? There have been several patches and updates for x-cart very recently. Or did you delete the newsletter php file?
 
You must log in or register to reply here.

Similar threads

D
Issue Spoofed Emails Appearing as Sent from My Own Server Despite Correct SPF/DKIM/DMARC Configuration?
Replies
2
Views
2K
drdna
D
E
Question Is multiple HELO registration possible?
Replies
2
Views
908
emrekoc
E
EnriqueR
Question Incoming mail is stored in Junk folder
Replies
6
Views
1K
EnriqueR
EnriqueR
M
Question Hackers are sending tons of mails
Replies
4
Views
1K
MrPleskLearner
M
L
Resolved Mails marked as Spam
Replies
6
Views
2K
tramvainqueur
tramvainqueur
Back
Top