LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
Reload this Page Sendmail relaying spam?
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 09-21-2010, 01:27 PM   #1
Dancingmoose
LQ Newbie
 
Registered: Sep 2010
Posts: 1

Rep: Reputation: 0
Sendmail relaying spam?

Hi guys, first post here, so sorry if this is in the wrong place.

I have multiple clients with their own domains, and a sendmail server that is only used to forward email addresses, for example, in my virtusertable,

bob@bobsdomain.com bobsemailaddress@gmail.com

The MX records point to this server, and the server should only be performing these forwards, however, I appear to be a spambot (emails are going out that do not appear to originate from my domains).

I have used multiple tools online to verify that I am not an open relay, only ports 22 and 25 are open on my firewall, and I have ensured that none of the users have a shell on the system.

I've been verifying some of my outgoing spam by watching /var/spool/mqueue fill up and checking some of the messages.

The only way I've found to prevent this spam from going out has been to remove /etc/mail/local-host-names (which I've verified only has domains that belong to my users in it). I've attempted to remove domains from this file one at a time to see if I can spot one that is causing issues, but the problem seems to appear sporadically with that.

Sorry for the long post, but I want to be sure I've posted all the things I've tried. Thanks!
 
Old 09-25-2010, 08:16 AM   #2
carltm
Member
 
Registered: Jan 2007
Location: Canton, MI
Distribution: CentOS, SuSE, Red Hat, Debian, etc.
Posts: 703

Rep: Reputation: 99
It would help to analyze the headers of some of the spam messages.
Can you post the header from one of these messages?

Do you allow relaying for any IP addresses or hostnames? It's
possible that one of your workstations is generating the spam.
Also, is anything else running on the server, such as a webserver
with php?
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Fastest MTA for relaying....Not spam of course jedimastermopar Linux - Server 4 07-13-2010 01:50 PM
Sendmail Relaying Spam resende Linux - Server 2 11-28-2009 10:56 AM
Sendmail Relaying marvin00001 Linux - Networking 2 09-22-2005 06:38 AM
sendmail no relaying Fordor Linux - Networking 1 04-25-2005 07:56 AM
Sendmail SPAM and relaying magyartoth Linux - General 0 05-02-2002 07:27 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 06:10 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration