My server looks like it's under a spam attack again. This time it's more subtle. I could really do with some advice off someone who has experience with this.
If I visit:-
It's got a few thousand messages.
Although if I go to sendmail configuration with Webmin it says the message queue is only 8???
I've been monitoring the server load with top and it's not going lower than 4. With the number of processes this should be 0.10 like usual.
There is also an apache user httpd command that's been running for over 500 minutes. Around the same time the message queue started filling up and the load shot up.
What can I do? I really want to catch the guy this time. Last time I ended up shutting down sendmail for a while until the spammer went away. Obviously that can't always be the solution and they'll keep coming back.
How can I track them down?
My server doesn't have anything in place to combat spam. Should I etup spam assassin? Or is there another program you could all recommend?