Results 1 to 4 of 4

Thread: Spam attack

  1. #1
    Join Date
    Sep 2002
    Sussex UK

    Unhappy Spam attack

    I am having problems with someone sending spam from our server. Sendmail is closed to relaying, but there are 1000s of returned mails in the nobody mailbox (apaches user) and 100s in the mailqueue. The only way they can be sending it is through an attack through php, we have searched high and low on the server for users running scripts and looked through the http logs of users and cannot find anything.

    Anybody got any ideas or experience?

  2. #2
    Join Date
    Jun 2001
    Chicago, IL
    well, there are the option of you being A. hacked and someone is spamming, B its the wellknown cgi program. I think that may be your problem. First off, empty the queue, then search for the program. you should also be looking for large text files which store the emails.
    Chicago Electronic Cigarettes: Tobacco Free, Smoke Free. 3 E-Cig Models, 11 flavors, and accessories.

  3. #3
    also you can check running cgi programs (if it's a real cgi) with ps -aux and then run a find to find in which directory it's stored

  4. #4
    look for
    *AlphaOmegaHosting.Com* - Hosting since 1998
    Managed Dedicated Servers and VPS
    Hosted Exchange 2010 Email Service

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts