etechsupport

Members
  • Content count

    6
  • Joined

  • Last visited

Community Reputation

0 Neutral

About etechsupport

  • Rank
    Newbie
  1. You need to set :fail: in place of catchall for your account. Emails that come to your address will go through but those which are sent on non existent addresses will get bounced. Other method of finding senders on non existent addresses and blocking them would be very complicated and it would utilise more CPU to implement such thing.
  2. I hope you dont mind but I will suggest you to setup mod_security on the server with customised rules. You should prevent users from executing commands from browser and security risk of database injection and php injection would reduce. Upgrading kernel version to version 2.6.17.6 or higher is also recommended as we have faced similar problems on some of our managed servers and mod_security alongwith kernel upgrade has been the only solution.
  3. I would say that yahoo has very good spam tracking headers as you can make out source IP as well as computer name from the headers. Headers also make it clear whether the email was sent by some virus installed on the system but the only problem is that emails can be sent by scripts as my recent experience revealed that a active virus on a system can use logged in yahoo email account to send emails from backend. Some sort of code verification has to be there all the time for users to read and fill the the code and then send the email. Yahoo is good in moving emails to bulk mails folder if the originating email has come from a blacklisted source but yahoo in itself is not successful in stopping internal spamming. There's huge difference in spam protection policies of free email service providers and ISP's
  4. I apologise for not being able to understand actual meaning of spamhost mail configuration. I wish to share my knowledge to help system admins and network admins to track spams originating from their servers and networks. If there's no section in the forum where system admins and network admins can help each other to end spamming then I would suggest to have a separate section.
  5. To enable extended loggin in exim to trace nobody mails on cPanel servers. Try the following trick . 1. Edit /etc/exim.conf 2. On the second line add : log_selector = +address_rewrite +all_parents +arguments +connection_reject +delay_delivery +delivery_size +dnslist_defer +incoming_interface +incoming_port +lost_incoming_connection +queue_run +received_sender +received_recipients +retry_defer +sender_on_delivery +size_reject +skip_delivery +smtp_confirmation +smtp_connection +smtp_protocol_error +smtp_syntax_error +subject +tls_cipher +tls_peerdn \ Make sure all that comes on a single line. 3. Save and exit. 4. Restart Exim. This tweak will allow you to track spammers from /var/log/exim_mainlog as well as the headers sent alongwith the spams. scri_pt path is sent in the headers which allows any newbie to easily track spammer and suspend his account.
  6. Spamcop is 1000 times better than sorbs as you are forced to pay everytime your server is blacklisted to get the IP delisted. Shared hosting providers cannot afford to pay everytime a server gets blacklisted.