Hello
I need help on how to stop spammer. I recently have bitter experince with Site5. How can a reseller stop his client from using his account to send spam mails.

How can a reseller stop his client from using his account to send spam mails.Suspend/terminate the end user account once the spam report is confirmed.

I recently have bitter experince with Site5.What happened exactly?

I have account reseller in SIte5.com , and hacker can change password my customers 's Cpanel. I mailed to site5.com , but don't have any reply.

I have account reseller in SIte5.com , and hacker can change password my customers 's Cpanel. I mailed to site5.com , but don't have any reply.

For the first time i have read this type of issue .. if it really happen then its a very big security breach .. and i will suggest you to change provider.

and hacker can change password my customers 's Cpanel.That sounds extremely serious... I thought it was something more benign.

I mailed to site5.com , but don't have any reply.Do let us know how things evolve.

take this problem very, very seriously. I had a client whose site got hacked (through Joomla) and the hacker set up a phishing page. Needless to say, the FBI had to get involved just to make sure that I, as the host, was not involved in the scam or the site owners. Funny, one of the recipients of the scammer's junk mail is an owner of the site. That's how we found out 8 hours after the site was hacked.

Site5 are / was nice company since being a reseller you cannot overcome such problem.

I just wonder since there are other hosting reselling programs for free on the net why anybody would go in any business with Site5 since they require advance payment for being a reseller?!

Hi. Our one of the reseller accounts suspended yesterday because of SPAM maid on our two customers' accounts. 500,000 SPAM messages had sent as said our provider. We terminated these accounts immediately and so our reseller account unsuspended. But this subject is very important for resellers like us and is too big problem. I think reselers don't stop it before the happened. But reseller hosting providers maybe stop SPAM before it happened. Is there a way of this?

While you can limit SPAM, control your signups (which becomes more difficult with reseller accounts vs shared accounts, as you never know who the reseller may be hosting), and monitor your servers, there is really no way to stop spam before it is sent, unless of course you disable mail completely.

To overcome this, a good host will monitor their servers closely so they can quickly determine if there is a spammer and take the proper action and quickly react to any notices they may receive about a complaint of spam being sent from one of their servers.

It's next to impossible to completely stop spam. No matter how many safeguards you do you will still have that problem. The best way to combat it is be vigilient in new sign ups and try to monitor as much as you possibly can so you can stop it before it happens.

I would recommend using fraud services like Fraudcall, or MaxMind to assist in new sign ups as that will eliminate many of the spammers that try to use other people's information. You can have it set so that signup's even get a automated phone call to verify their account.

However being on a hacked server is different, and I would seriously get in contact with Site5 asap.

Site5 are / was nice company since being a reseller you cannot overcome such problem.

I just wonder since there are other hosting reselling programs for free on the net why anybody would go in any business with Site5 since they require advance payment for being a reseller?!

Site5.com <-- i think bad hosting :mad:

I will try Fraudcall, or MaxMind , thanks LaneHost !

I have also experienced problem with spam being sent to my clients. I tried many anti-spam services but found Katharion.com to work out very well. I contacted Jeff at Katharion and he really helped.

They have a system that filters the spam from your incoming email and then sends clean email to your mail server. They process pop3, exchange and imap type email.

They have a 30 day free trial. With this, you have nothing to lose.

Hope this helps,

Tony

I have account reseller in SIte5.com , and hacker can change password my customers 's Cpanel. I mailed to site5.com , but don't have any reply.

Hey,

Maybe you should look for a malicious script in your account that the hacker uses to find out your password or access your account. As a Cpanel reseller you can change passwords for your clients accounts and if the hacker has your password or can access your account he can do what you said.

If it's not a server related issue then this can be the way the hacker changes the passwords. Big hosts (like site5) have "standard" servers and that means less problem.

I am not saying it's not site5 fault because it could be but I just wanted to tell you about another way the hacker could be accessing your account and maybe you can check out the files for something suspicious.

Good luck.
Regards,

For the first time i have read this type of issue .. if it really happen then its a very big security breach .. and i will suggest you to change provider.

I agree with that.. looks like security issue more.. not like spam..

I have also experienced problem with spam being sent to my clients. I tried many anti-spam services but found Katharion.com to work out very well. I contacted Jeff at Katharion and he really helped.

They have a system that filters the spam from your incoming email and then sends clean email to your mail server. They process pop3, exchange and imap type email.

They have a 30 day free trial. With this, you have nothing to lose.

Hope this helps,

Tony

Don't make advertising. Most of the companies have already spam tools. Also the subject is different than you told. Our provider provides some spam tools. Also they put a limit to sending email and monitor the servers. We contacted them and they said that there is no way to stop spam before it sent.

I have account reseller in SIte5.com , and hacker can change password my customers 's Cpanel. I mailed to site5.com , but don't have any reply.
I had the same problem with Site. Seems guys from Vietnam doing it. And its happening only when Clietexec installed.
I had changed my WHM password few times. I did experiment. After deleting ClinentExec everything was fine. Then i installed ClientExec again and as soon as I did it - somebody quickly changed my WHM password.
Seems big security problems with Site5 servers.

I did experiment. After deleting ClinentExec everything was fine. Then i installed ClientExec again and as soon as I did it - somebody quickly changed my WHM password.


Doesn't that imply a problem with ClientExec more than with the site5 servers? Was/is your clientexec installation up to date?

There is a new clientEXEC out, and something like that was in the list.. Any chance that the ClientEXEC password was hacked? That would make sense as clientexec would be able to change the password of the reseller logging in, thinking that it is root...
:spamsign:

Hi. Our one of the reseller accounts suspended yesterday because of SPAM maid on our two customers' accounts. 500,000 SPAM messages had sent as said our provider. We terminated these accounts immediately and so our reseller account unsuspended. But this subject is very important for resellers like us and is too big problem. I think reselers don't stop it before the happened. But reseller hosting providers maybe stop SPAM before it happened. Is there a way of this?

Out of curiosity, what hosting provider was that? If I am a reseller and I have a customer that is spamming, that would not be nice to have my entire reseller account suspended because of a couple customers. I would think it would be a better business practice that the main hosting company notify the reseller. Then, if the reseller fails to suspend the objectionable account, the reseller account should be suspended.

Depending on how many clients you may have, that would look bad on the reseller to have all of their clients' websites show up with a suspended page.

One idea that may help would be to register your reseller domain with abuse.net for those that use abuse.net to search for abuse email addresses.

If I am a reseller and I have a customer that is spamming, that would not be nice to have my entire reseller account suspended because of a couple customers. I would think it would be a better business practice that the main hosting company notify the reseller. Then, if the reseller fails to suspend the objectionable account, the reseller account should be suspended.The end user account must be stopped/suspended as soon as it is determined that it is being used to send spam. I agree with you on not suspending the entire reseller account though.

Doesn't that imply a problem with ClientExec more than with the site5 servers? Was/is your clientexec installation up to date?True, that can be the case. We need to take into account though that Site5 gives free clientexec to its resellers, so one reseller's problem with clientexec should definitely get their attention as well.

I think not "Clientexec" Security , because CLientexec is updated lasted version. But Server Site5 Managed not security. <-- Hacker can hack any account he want. <-- Bad Server.

At the moment I'm using ClientExec and it never happend. I remember I found few post in Site5 forum with the same problem. When I contacted Site5 support - techs just changed my password. l
In my case it was only begining and nobady was affected only myself.
But seems sombode know security bug in Site5 servers and using it.

Does anyone know if this is definately ClientExec or simply a security bug on Site5's servers? Is WHMCS better than ClientExec? In the past, I have have only used ModernBill and WHMAutoPilot.

I am glad I have found this thread, though. I am still researching for a decent reseller. I think I may have found one, but am not jumping on any offers. I want to thoroughly check out all of my options. The final list of prospects I have, I am emailing them about this scenario, that is, how do they handle spam abuse from clients of resellers.

Edit below:

I just received a response from the reseller company I emailed. Basically, they will disable the cPanel account of only the offending account, not the entire reseller account. An exact quote from their response is:

In summary, so long as you follow our advice, show that you are proactively working to discourage spam being sent out (by promoting the use of updated scripts, secure directories etc. with your clients), then you should have nothing to worry about.