My server gets spammed every day: Redstation has mail limit
I'm the admin of Gameworld.gr. I use Joomla and JomSocial components. Since 9/9 when I sent a mass email ONLY to my members, my mail server has huge traffic in the SMTP.
- We deleted the outgoing email traffic and we thought that this would solve the problem.
- We' ve even changed provider and moved from Stagnom to Redstation so that we can change IP (in case we were blocked).
- We've added firewall.
My webadmins tried every method. Instead I have about 10.000 spam emails per day. Look at the screenshot!
What should I do? My webadmin says that Stagnom has the complete control of the mail server and that I have 500 mail limit per day. Of course that's not enough.
Who's fault is it?
1)Shall I change server? Is it Redstation's fault that they have an email limit?
2)Are dedicated server providers supposed to have unlimited traffic to emails?
3)Is it our fault? Shall we find a way to block these spammers? Is there a way actually to block everyone from using your mail server? We want specific orders with specific commands. We want to try everything.
We've even deleted modules "InviteX" and "JNews" from Joomla, in case it was their fault, but the problem returned 24 hours after. Some spammers use our mail server and we can't block them!
It looks like someone is spamming via your server.
The 'gameworl' user is responsible for it, figure out why they are able to spam via them.
I put my bets on a security leak / code injection in the website that's hosted on the 'gameworl' user.
» www.InstantDedicated.com - Online in no time » Dedicated Servers in [EU] Netherlands with DAILY support, also on weekends » DDOS Protected network - 100% Money Back if it doesn't work for you » Streaming / IPTV allowed | Up to 10 Gbit ports | 100% Network Uptime
3). It is your responsibility to prevent a user or Malware from using SMTP to send out SPAM. Unless you have fully managed hosting and your host is supposed to take care of this stuff for you. You need to know the code on your server and make sure it is well crafted and up to date. There is no way that is your host's responsibility unless you specifically say hey manage my apps and make sure they are clean. And of course pay for that level of service.
Were the contents of queued emails legit or they were spam contents? If the emails which were queued, were not sent by you, there must be something wrong on the server and I would recommend to hire server management company. If they were legit emails but they were not being sent, you will need to check your email logs to find the root cause. Again, in this case you can hire server management company to find why the emails are not being sent.
You should really hire a sysadmin who knows his job; if the current sysadmin dropped the ball to your ISP because you use his SMTP gateway, then he should be replaced immediately. As shown from your mail queue screenshot, the issue resides on your server. The fact that the spam mails keep piling up there is your ISP's issue (since they allow 500 emails per day), but this is not the main issue here, you should investigate why do spam e-mails get sent through your server.
Have your sysadmin try doing an exigrep on the message ID to see when it was first originated. Then he should be able to identify the issue, based on the timestamp of the exigrep result (if it's an SMTP password that was leaked, a script that sends e-mails or a possible security issue with your website).
You could easily have a user or more whose machines are infected with viruses, and they are sending out those emails without their knowledge. So you need to access the logs and find out what user or users are sending the spam.