I just moved to a new server and latly I've seen my mail going out like this:
071 Subject: =?iso-8859-1?B?U3BlZWRFYXJuZXIgUG9pbnQgRW1haWwgZm9yIHJhZmFu?=
039* Return-Path: Fast_Lane@XXXX.com
074F From: "=?iso-8859-1?B?U3BlZWRFYXJuZXIuY29t?=" <Fast_Lane@XXXX.com>
Using Exim 4 and that was the same as my old server. I also moved the exim.conf file over to the new server to see if that would fix it, but it didn't.
Due to spammer activity, I find myself with 20,000 messages in the queue and I'd really like to remove those emails from the queue as it is causing delays to good messages.
Can you give me the SSH command to remove messages by subject line please?
I have already used
exim -bpru|grep frozen|awk {'print $3'}|xargs exim -Mrm
and
exiqgrep -i -f '<>' | xargs exim -Mrm
and
exim -bpu |awk '/nobody/ {print $3} ' |xargs exim -Mrm
But there are still 11,000 messages left in the queue.
The spammer messages have the following subject lines:
IS THIS TRUE?
PAYMENT UPDATE
Online Banking Account Is Locked !
Online Banking has been locked
ARE STILL ALIVE /THIS A SAD NEWS ABOUT YOU
I would like to block emails that contain certain subject that goes to one domain and also the one being sent internally between the users on the same domain. The tricky part is, the recipient of the blocked email will receive a notification (The message has been blocked. To retrieve the full emails, please contact the administrator). Anybody has done it before?
I am using Qmail+SA+Clam on FreeBSD
I wonder if someone know from where I can get a business or personal web packages, email packages or domain registration at one place with smart utilities. Hosting Company must be in local Middle East countries.
View 3 Replies View RelatedSince Jan 07, one of our servers has been sending thousands of emails to ne.jp hosts.
Eg from logs:
Code:
Sep 4 19:11:11 debian sm-mta[25383]: l84FY9ME016602: to=, ctladdr= (2001/2001), delay=01:37:02, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FYB7d016734: to=, ctladdr= (2001/2001), delay=01:37:00, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FY9A4016629: to=, ctladdr= (2001/2001), delay=01:37:02, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FY9la016616: to=, ctladdr= (2001/2001), delay=01:37:02, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FYCkO016807: to=, ctladdr= (2001/2001), delay=01:36:58, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FYB7B016730: to=, ctladdr= (2001/2001), delay=01:37:00, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FYCO0016757: to=, ctladdr= (2001/2001), delay=01:36:59, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FYDjq016819: to=, ctladdr= (2001/2001), delay=01:36:58, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FYBhL016751: to=, ctladdr= (2001/2001), delay=01:37:00, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
Sep 4 19:11:11 debian sm-mta[25383]: l84FYDPw016811: to=, ctladdr= (2001/2001), delay=01:36:58, xdelay=00:00:00, mailer=esmtp, pri=930403, relay=lsean.ezweb.ne.jp., dsn=4.0.0, stat=Deferred: Connection timed out with lsean.ezweb.ne.jp.
We're absolutely unable to track or find out who is sending it or how to stop this.
So I'm wondering if it is possible to prevent sendmail from sending to:
lsean.ezweb.ne.jp, OR
docomo.ne.jp, OR
softbank.ne.jp
/var/mail/vhostswww logs are not showing helpful info at all. Eg:
Code:
--l84GRnX5029819.1188924137/debian--
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=ISO-2022-JP
Mime-Version: 1.0
From: hanako.@docomo.ne.jp
Subject:
To: a_j.n-y_bluespider-tattoo@softbank.ne.jp
Message-Id: <200709041410.l84EA0Fh007971@debian>
Date: Tue, 4 Sep 2007 16:10:00 +0200
Tue, 4 Sep 2007 16:10:00 +0200
by debian (8.13.4/8.13.4/Submit) id l84EA0Fh007971;
Received: (from vhostswww@localhost)
for ; Tue, 4 Sep 2007 16:10:00 +0200
by debian (8.13.4/8.13.4/Debian-3sarge3) with ESMTP id l84EA0jk007973
Received: from debian (localhost [127.0.0.1])
Return-Path:
Content-Type: text/rfc822-headers
--l84GRnX5029819.1188924137/debian
Last-Attempt-Date: Tue, 4 Sep 2007 18:42:16 +0200
Diagnostic-Code: SMTP; 550 Invalid recipient:
Remote-MTA: DNS; mx.softbank.ne.jp
Status: 5.1.1
Action: failed
Final-Recipient: RFC822; a_j.n-y_bluespider-tattoo@softbank.ne.jp
Arrival-Date: Tue, 4 Sep 2007 16:10:00 +0200
Reporting-MTA: dns; debian
Content-Type: message/delivery-status
--l84GRnX5029819.1188924137/debian
<<< 503 No recipients specified
550 5.1.1 ... User unknown
<<< 550 Invalid recipient:
>>> DATA
... while talking to mx.softbank.ne.jp.:
----- Transcript of session follows -----
(reason: 550 Invalid recipient: )
----- The following addresses had permanent fatal errors -----
from localhost [127.0.0.1]
The original message was received at Tue, 4 Sep 2007 16:10:00 +0200
--l84GRnX5029819.1188924137/debian
This is a MIME-encapsulated message
Auto-Submitted: auto-generated (failure)
Subject: Returned mail: see transcript for details
boundary="l84GRnX5029819.1188924137/debian"
Content-Type: multipart/report; report-type=delivery-status;
MIME-Version: 1.0
To:
Message-Id: <200709041642.l84GRnX5029819@debian>
From: Mail Delivery Subsystem
Date: Tue, 4 Sep 2007 18:42:17 +0200
Tue, 4 Sep 2007 18:42:17 +0200
by debian (8.13.4/8.13.4/Debian-3sarge3) id l84GRnX5029819;
Received: from localhost (localhost)
Return-Path:
From MAILER-DAEMON Tue Sep 4 18:42:17 2007
--l84GRnX4029819.1188924135/debian--
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=ISO-2022-JP
Mime-Version: 1.0
From: hanako.@docomo.ne.jp
Subject:
To: a_j.n-y_bluespider-tattoo@softbank.ne.jp
Message-Id: <200709041411.l84EB8CS011861@debian>
Date: Tue, 4 Sep 2007 16:11:08 +0200
Tue, 4 Sep 2007 16:11:08 +0200
by debian (8.13.4/8.13.4/Submit) id l84EB8CS011861;
Received: (from vhostswww@localhost)
for ; Tue, 4 Sep 2007 16:11:09 +0200
by debian (8.13.4/8.13.4/Debian-3sarge3) with ESMTP id l84EB8f6011862
Received: from debian (localhost [127.0.0.1])
Return-Path:
Content-Type: text/rfc822-headers
--l84GRnX4029819.1188924135/debian
Last-Attempt-Date: Tue, 4 Sep 2007 18:42:15 +0200
Diagnostic-Code: SMTP; 550 Invalid recipient:
Remote-MTA: DNS; mx.softbank.ne.jp
Status: 5.1.1
Action: failed
Final-Recipient: RFC822; a_j.n-y_bluespider-tattoo@softbank.ne.jp
Arrival-Date: Tue, 4 Sep 2007 16:11:09 +0200
Reporting-MTA: dns; debian
Content-Type: message/delivery-status
--l84GRnX4029819.1188924135/debian
<<< 503 No recipients specified
550 5.1.1 ... User unknown
<<< 550 Invalid recipient:
>>> DATA
... while talking to mx.softbank.ne.jp.:
----- Transcript of session follows -----
(reason: 550 Invalid recipient: )
----- The following addresses had permanent fatal errors -----
from localhost [127.0.0.1]
The original message was received at Tue, 4 Sep 2007 16:11:09 +0200
--l84GRnX4029819.1188924135/debian
This is a MIME-encapsulated message
Auto-Submitted: auto-generated (failure)
Subject: Returned mail: see transcript for details
boundary="l84GRnX4029819.1188924135/debian"
Content-Type: multipart/report; report-type=delivery-status;
MIME-Version: 1.0
To:
Message-Id: <200709041642.l84GRnX4029819@debian>
From: Mail Delivery Subsystem
Date: Tue, 4 Sep 2007 18:42:15 +0200
Tue, 4 Sep 2007 18:42:15 +0200
by debian (8.13.4/8.13.4/Debian-3sarge3) id l84GRnX4029819;
Received: from localhost (localhost)
Return-Path:
From MAILER-DAEMON Tue Sep 4 18:42:15 2007
--l84GRnX3029819.1188924134/debian--
How would I solve this problem as it's making our server load skyhigh 24/7.
Additional info about system:
> Debian Linux, latest kernel
> Sendmail (we've tried postfix, exim, with same results)
> Non cPanel system.
Im trying to zip up an sqlite database backup.
I execute this command
Code:
zip ../d/db/backup.zip ../d/db/09-02-15.sqlite
backup.zip never appears. Instead, I get some random filename in the directory. Like ziOHokOw
If I try to zip a smaller file(last weeks backup) everything runs fine?
Code:
zip ../d/db/backup.zip ../d/db/09-02-08.sqlite
So the 134mb file zips fine, but the 200mb one seems like its failing and im left with some type of temporary file. I tried downloading the weird filename and unzipping it. It has partial info like directory structure, the filename but the actual file inside is corrupt.
I found this line in my crontab file
0 7-23/3 * * * top.sh
when it's running?
and what is it doing?
What is the Command Line, hoe do I get to it, when I do how do I update Perl to 5.88
View 5 Replies View Relatedto append the directory that the accounting.php.inc file is located in to the open_basedir line.
How do i do it, where n how do i make these changes.
i have a win 2003 server and iis6
i have about 300 sites i will change my internet line
to change all web sites ip's to new ip in iis how can i do that?
I do not understand what network: 5 mbps and the traffic 1Gbps mean
=========
CPU Intel Core2-Duo E4500
2.2GHz-FSB 800MHz -L2 2MB
RAM DDR2 PC2-5300 (667Mhz) 2GB
HDD SATA2 250GB (7,200rpm)
LANcard Intel PRO/1000 PF Server Adapter
Rack Type 1U (4.5cm)
Network: 5Mbps
Traffic 1Gbps Dedicated Line
=======
I remember some companies were offering servers on 1 gbit/s line and 10 TB of bandwidth for $100/month. Or did I dream this one up?
iweb was offering 10 TB/month servers for $99 (I don't remember if it was 100mbit/s or 1 gbit/s line though), they don't seem to offer this anymore.
This is our setup: We have two locations about 120 miles apart. We have direct connection with a T1 line.
My question: How much safer is our data passing through the same T1 everyone else is using. Most people sending data through the same T1 line are using ISP, so are safer by not using an ISP? .........
What command could I use to get the last line of an output?
Heres why...
I use this command:
netstat -plan|grep :80|awk {'print $5'}|cut -d: -f 1|sort|uniq -c|sort -nk 1
I would like to get just the last line of the output, the output looks like this:
1 203.118.105.*
1 80.195.165.*
1 87.211.51.*
1 91.40.90.*
8 82.2.222.*
213
The reason is because I'd like to get that last figure to place into a file on a certain time period (through a cron), which will then be graphed with PHP.
Got a centos / cpanel box. Had to change the block of IP's with an entirely new block of 8. Problem is I cannot access cpanel/whm due to this, but only via ssh. If I run the below, it shows the old IP's
/etc/init.d/ipaliases start
How do I replace the old block with the new? I've never done it via command line before.
if anybody in the community looks for trixbox as the os to be installed on a dedicated server. I am looking for a new line of servers to provide and i am thinking that Trixbox could be one of them.
View 0 Replies View RelatedI've a rack in the datacentre, and actually sharing the ethernet line with another partner's rack.
Something like:
Bandwidth -> Switch 1 -> Switch 2 (partner's rack)
Bandwidth -> Switch 1 -> Switch 3 (my rack)
After a previous uplinks issue, i'm never able to hit above 4Mbps of download speed to my home's cable broadband anymore. I have no idea whether it's because my partner capped my bandwidth from Switch 1, or his usage has increased such that it's affecting my traffic too. I can't be too concerned about it with him, as he's paying the bulk of the bandwidth costs.
For the whole rack, i'm not able to hit above 5Mbps accumulatively, and my normal bandwidth usage is only about 1-2Mbps.
So i'm thinking of getting another line for bandwidth directly from the datacentre to my Switch 3, perhaps starting from just 1-2Mbps only.
How will things improve? Just a silly thought, whether my total available bandwidth can now be 5Mbps + 2Mbps = 7Mbps.
I posted this problem in the PHP forum without a response. I thought this forum might be better.
View 0 Replies View Relatedhow to reset a password via a single line command? Or script? To make it automated?
View 14 Replies View Relatedhow i can install SVN by command line on centos OS
View 1 Replies View Relatedis KVMoIP like Remote Desktop or is it just command lines?
View 5 Replies View RelatedThis is my current hosting
Virtual Server - $60/Month
100GB disk
1 CPU
512MB dedicated RAM
768MB shared RAM
100mbit unmetered connection
Now, I totally bombed the b/w. I am looking for a webhost that will allow 50-60mbps.
I will be hosting anime, which is unlicensed.