• The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

tracking smtp authentication

S

swebs

Guest
I have smtp authentication required on my server but it seems that someone might have figured out one of the users/password so that they can send spam.

when I look in the secure log I can see a lot of "START : smtp" messages.

How can I see or figure out which user is authenticating these session?

Is there somewhere in Plesk that I can turn on logging to see the TO and FROM in a log file to be able to determine if there is abuse going on?

Thanks in advance.
 
You must log in or register to reply here.

Similar threads

P
Forwarded to devs Event 'CP User Login' triggered despite invalid additional authentication step (MFA)
Replies
2
Views
721
Kaspar@Plesk
Kaspar@Plesk
C
Question Scripting access to restricted directories through user email registration
Replies
1
Views
221
Martin Dias
Martin Dias
H
Question Send mail using a site Not hosted on Plesk.
Replies
8
Views
941
Kaspar@Plesk
Kaspar@Plesk
J
Resolved 25: Connection timed out - Almalinux 9.4 x86_64 | 18.0.61.1
Replies
2
Views
909
josemanuuxd
J
S
Resolved How to obtain the IP of a webmail login
Replies
2
Views
568
SalvadorS
S
Back
Top