On a cobalt raq4 which I administer all of a sudden email is not getting through.. Users can login but they are not receiving email. Here is the bounceback message I get to the admin account:

The original message was received at Wed, 20 Nov 2002 22:06:32 -0500 from fly.m0.net [209.11.137.109]

----- The following addresses had permanent fatal errors ----- info@hosteddomain.com

----- Transcript of session follows -----
554 5.0.0 MX list for hosteddomain.com. points back to www.hostdomain.com 554 5.3.5 info@hostdomain.com... Local configuration error

Also, when I go to the web admin I can see the control panel, but if I try to get in and modify a virtual site, it tells me that the file cannot be found.. All this worked perfectly yesterday and no changes have been made to the server.

I logged into a shell and looked at a couple things, mail log being one of them and I noticed a huge number of emails going to yahoo accounts (looks like spam). This was not happening yesterday. Unfortunately, the way my bandwidth provider is configured I can only telnet to my raq from an ssh shell on their server. Their telnet server is currently down so at the moment I can't do any more digging.

Any help would be greatly appreciated!

Thanks!

Hi Desertfoxmb,

It does not sound like you have been hacked, but somone might be using your box for sending spam.

Did you have all patches installed?
did you have "pop before smtp"enabled?
Did you try rebooting your raq?

It does not sound like you have been hacked, but somone might be using your box for sending spam.
Did you have all patches installed?
did you have "pop before smtp"enabled?
Did you try rebooting your raq?

See here's the thing.. I kind of inherited this raq. The person who admined before me left the raq having mucked about and broken some things. I am not comfortable patching the server for fear of completely breaking it. We are in the process of getting ready to migrate to a new server.

Pop before smtp was not enabled. Do you know how I can enable that without the control panel? That page (email server parameters) has an error in it and I cannot save a change.

I rebooted twice.

Since you do not know what the previous owner did with the box, i think the only wise thing to do is a complete reinstall of the OS.

Not much help i'm afraid but can't think of anything better besides hiring someone that knows more about these things.
There are a couple of firms around that can help you with this type of stuff. solarspeed.net is one, i guess others can mention other companies.....

It looks like the postgre database is corrupted.

or the symlinks are broken.

sitemanager is lost. It happens to some servers.

Not everything is lost. But symptomps are the ones you mentioned:
you can't access to site admin, you can't receive emails but sites still up and running.

The fact is that: /usr/admserv/html/.cobalt/siteManage is lost, this sometimes happens when you click twice the site delete button

Solution: download sitemanage-fix so those directories inside siteManage/ can be restored.

notice that after you have restored all the sites. You should get into sitemanager, and for each site, redefine again the email server. Otherwise problems with emails will continue.

Sitemanage-fix can be found @:
http://www.ernestoperez.com/en/mod.php?mod=userpage&menu=12&page_id=4

It's not my script. Just that nobody host it anymore. So I decided to keep a working copy just in case it happens again.