1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Spammer Using my server

Discussion in 'Plesk for Linux - 8.x and Older' started by eewd, Nov 16, 2006.

  1. eewd

    eewd Guest

    Having checked the mail queue on Plesk I found yet another 500 e-mails to thousands of AOL, Yahoo and Hotmail addresses.

    I've set the relaying preferences to

    Authorization Required for SMTP and given POP a lock of 1min.

    I've even disabled Mail on the domain that the spam is originating from...

    How can I stop the spammers?

  2. atomicturtle

    atomicturtle Golden Pleskian

    Nov 20, 2002
    Likes Received:
    Washington, DC
    They're either using a compromised user account, or relaying through a vulnerable web app. You'll need to look through your logs, maillog, and your domains web logs, to try to isolate it.
  3. eewd

    eewd Guest

    If I delete the domain that the spam is coming from should that sort it??

    Also, does plesk have a way of viewing logs or am I going to have to SSH in? (I am a bit of a n00b)

  4. Jericon

    Jericon Guest

    You'll have to access SSH to view the logs. Depending on how the server has been compromised, deleting the domain may resolve the issue, but it very well may not as well.
  5. Traged1

    Traged1 Guest

    We would normally remove the MX record for this domain's DNS so that no mail could be sent to or from the server for this domain, while you research what is happening.