How To Configure A Firewall To Let Only Exim Connect Via Port 25
Feb 20, 2008
Alright now this is the most intelligent way to send spam I have ever seen. Apparently a guy has made a PHP or Perl script that is acting as an MTA. That's right: He is neither using Sendmail nor Exim but he made a script that acts as an MTA. That means the script itself connects to third party mailservers via port 25 and communicates with the remote mailserver as if it was an MTA itself. This works even if Exim is entirely disbaled...
The spam still get's sent. The script is running only occasionally...not like a daemon.
So it is nearly impossible to locate it. You have no Exim logs to look at. And in the Apache logs any PHP script could be it... You are not able to find that out. Therefore I am unable to stop him unless I manage to block outgoing connections to another host's port 25 for any program but for exim.
How can I configure my firewall (APF) so that only Exim my connect to other servers via port 25? Is that even possible?
View 1 Replies
ADVERTISEMENT
May 20, 2009
I need to configure Spamassassin to not check outgoing mails
So I need to check only mails that are hosts on my mail server, but mails which relay not to be checked.
configuration of Spamassassin in exim:
warn spam = nobody
warn message = X-Spam_score: $spam_score
X-Spam_score_int: $spam_score_int
X-Spam_bar: $spam_bar
X-Spam_report: $spam_report
condition = ${if eq {$acl_m1}{local_to_check_spam} {yes}{no}}
!condition = ${if eq {$acl_m0}{local_to_check} {yes}{no}}
Maybe it's need just one line in Spamassassing local.cf?
View 0 Replies
View Related
Feb 7, 2013
an Apache 2.2 server suddenly quit accepting traffic on port 80. The error message was "An attempt was made to access a socket in a way forbidden by its access permissions could not bind to address 0.0.0.0:80 ".It took a while, but the server is now back up.
View 2 Replies
View Related
Nov 4, 2008
I am a Qmail users all these while and i can control the email routing via smtproutes and rcpthosts.
How can I do this in Exim?
I have a website xyz.com hosted in this server but the email server is hosted seperately. By default, i think all the email submitted locally will be send within the server itself. I need Exim to think xyz.com is a remote domain.
View 4 Replies
View Related
Oct 31, 2008
I find it hard to configure IP tables for firewall, can I find already made scripts anywhere?
View 1 Replies
View Related
Apr 23, 2008
My fedora server is running apf firewall. When I turn it off, clients can connect.
When I turn it on, it says MSG: Contacting Server.
I have already added ports 6100 and 3784 to /etc/apf/conf.apf by adding the ports to the lines, EG_TCP_CPORTS, EG_UDP_CPORTS, IG_TCP_CPORTS, and IG_UDP_CPORTS
and restarted the service.
Is there any additional ports I need to add?
(I've uploaded my conf.apf file)
View 2 Replies
View Related
Jul 21, 2014
I am having trouble connecting to my ssh server. It responds with a lengthy error message about no network etc. but it is the last message that concerns me:
Sometimes, such troubles can be caused by a misconfigured firewall.
How can I check the firewall if I cannot connect to ssh? I am running plesk 11.5 control panel and CentOS 6. Is this something I can do from plesk?
I can see that the firewall in plesk is set to allow all for ssh, but I cannot see way to disable the firewall to test ssh connection. Can this be done from plesk?
View 3 Replies
View Related
Dec 11, 2008
I have tried everything I know (I know not much)
I have rebooted it multiple times. I have terminated lots of account and now I have only 2 or three accounts.
I have removed all the fishy scripts. Done everything I can.
But it just becomes un responsive within a minute of re booting.
Its a Pentium 4 Single Core server.
1GB Ram and 160GB harddisk with cpane+WHM.
I get error
cpsrvd failed @ Thu Dec 11 19:50:43 2008. A restart was attempted automagically.
Failure Reason: Unable to connect to port 2086
I cannot even connect to server because within minutes the server hangs.
View 13 Replies
View Related
Jul 3, 2008
Is it possible to change the port of ftp, similarly to what you can do with SSH?
View 13 Replies
View Related
May 26, 2007
should i need to edit /etc/services and /etc/exim.conf?
View 3 Replies
View Related
Jul 13, 2008
I have a friend who usually manages my server, but he's been hard to contact, and these forums are officially my best friend
I figured out how to change the sshd config, and restarting the service to change the port. My friend installed a firewall due to ddos attacks, and I think i need to manually unblock the port that I would like to be the new sshd port. How can I find out what firewall I'm running, and where can I add a new port to the allow list?
View 3 Replies
View Related
Dec 21, 2008
I install and configure apf firewall on my VPS and i have a problem. The port 80 is open, my website it`s up and working but i can`t download anything.
Logs:
[root@HERA ~]# wget ***/test.zip
--02:03:49-- ***/test.zip
Resolving ***... 67.148.95.11
Connecting to ***|67.148.95.11|:80...
View 11 Replies
View Related
Apr 21, 2009
Do you still have to add each port individually to Server 2008's Firewall like we did on Server 2003?
If so, will the guides that were put out for 2003 work on 2008's? I want to be sure before putting all these ports in....if I can just specify a range instead, it would be much easier!
View 3 Replies
View Related
Aug 25, 2014
How do we redirect port in Plesk firewall module without touching iptables? I saw forwarding but there was no destination port.
View 1 Replies
View Related
Mar 1, 2015
I have some issues with the plesk firewall:
1. Emails are not delivered:
From some reasons, plesk is blocking incoming 25 port (in plesk shows opened, but it's not)My emails are delivered trough port 25, after doing some tests ( i've sent some emails to an email account hosted in the server) there was no email in the roundcube inbox! All emails were blocked...
a) Firewall was blocking the port 25 on server restart.
b) I have succesfully unblocked it from plesk manager -> tools -> edit/change -> even if i didn't change anything, i saved the "changes" and in my roundcube inbox i recived all the test emails.
c) In /var/log/maillog there is no error.
2. Passive FTP gets blocked in the same way, to successfully connect FireFTP on passive mode i need to repeat 1.b steps even if i've created a special rule to prevent the blocking, opening 49152-65534 ports and set PassivePorts 49152 65534 in /etc/proftpd.conf
The issue appears randomly, because in the last 5 days i didn´t restart the server, the last time i checked it worked. Today, without touching anything, firewall blocked my passive FTP and I had probmels reciving emails from gmail, yahoo etc...
View 2 Replies
View Related
Aug 28, 2012
How can I allow only one ip or a list of ip addresses to access port 8443.I need to limit access this port to few ip addresses and not everyone
View 6 Replies
View Related
Aug 8, 2013
I'm runnung a server with Apache2 (Apache/2.2.16 (Debian 6.0))
I would like Apache2 listen on port 8080 for IPv4 and on port 80 for IPv6.
This is what I have now:
/etc/apache2/ports.conf
View 4 Replies
View Related
Feb 19, 2008
Currently I am using Linux + cPAnel and using the port 25 for email sevrer. Currently we facing 1 problem is, some user's ISP is not support port. May I know how can I add additional port into server and allow users to send mail by different port?
View 1 Replies
View Related
Dec 17, 2008
Do you recommend a software firewall when behind a hardware firewall?
All of our servers are behind Cisco ASA 5505 firewalls which we rent from Liquidweb. All are being managed correctly and setup to there optimal levels. With hardware firewalls firmly in place, do you still recommend a software firewall such as APF or IPTables (we're talking linux); in our opinion we see it as an extra administration overhead. If this is however untrue, we will change out thinking.
View 3 Replies
View Related
Jun 21, 2009
I have an office internal website and I opened a port in the gateway of my office (7080) to this website (server )'s 80 port. That makes this website open to public as office has static IP. And then when I view the site from home . it's fine. But when I tried to login, the site is using a pop-up, I guess it's http authentciation, login, I was redirected to a url without my port number any more, that stops my access to the site as obviously I would.
How can I keep my connection/port number ...?
View 2 Replies
View Related
May 2, 2007
I am having issues in receieving emails. For some reason, the rbl lists I had setup are causing the server to reject emails (retry - timeout). So, I need to take this rbl list completely. How can I do that? exim.conf is locked and using the advanced editor is no fun even though I tried it putting the dnslists without the rbl causing the problem.
View 3 Replies
View Related
Jun 13, 2008
I've found a dedicated server at a great price and plan to stick with it, my first ( already have 2 vps accounts ). I don't have the money for a hardware firewall. However, I do have a chance to renew a Kerio WinRoute Firewall license from way back.
Does anyone think this would be better than the default windows 2003 firewall?
View 1 Replies
View Related
Jun 18, 2008
about the NIC and switch,
there are giga port vs mega port,
in your experience,do they really be different?
View 14 Replies
View Related
Jun 10, 2007
I recently changed my SSH port, but locked myself out when my APF firewall was installed.
Where would I got to add a custom port inside the APF's config file?
View 3 Replies
View Related
Mar 27, 2008
some of my sites works good and some didn't work!
i check my site on checkdns.com and its show me this Error Report
CheckDNS.NET is verifying if NS are alive[url] NS list mismatch: registration authority reports that domain is hosted on the following servers: 'ns.sitename.com; ns1.sitename.com', but DNS server ns.sitename.com reports domain to be hosted on 'ns.sitename.com'. Please make sure that you configure the same DNS servers in registrar database and on your DNS
i saw the
PHP Code:
[root@secure ]# cat /etc/resolv.confnameserver xxx.xxx.xx.xxxnameserver xxx.xxx.xx.xxxnameserver xxx.xxx.xx.xxx[root@secure ]#
i have 2 ip just
View 2 Replies
View Related
Feb 16, 2008
I have a question on how to set up (clone) two nameservers.
I have two VPS' with two IPs that are totaly independent of each other. Both running ispCP with Apache2, mail, ftp, mysql, AND bind9 as DNS managment.
So. I want these two server to be as independent as they are, BUT they should share NameServers with each other.
Something like this:
host1:
ns1.domain.com = host1
ns2.domain.com = host2
host2:
ns1.domain.com = host1 (or host2?? = inverted)
ns2.domain.com = host2 (or host1?? = inverted)
A lot of domains are running more then one NameServer, but I could not find any tutorial on how to "clone" the NS from one to an other. Is it enough to just add some kind of "transfer to IP setting" in bind, or do I have to have scripts that download settings and files from one server to an other regularly?
View 2 Replies
View Related
Mar 15, 2008
I have a problem in the last apache upgrade (apache 2.2.8 + php5) step .
exactly in "Configure Suexec and PHP"
I found this option doesn't have multi values as CGI or Suphp just I found none :
PHP 5 Handler none
PHP 4 Handler none
I must to return to build apache1 with php4 for I can see suphp and cgi in "Configure Suexec and PHP" "PHP 4 Handler" option .
View 5 Replies
View Related
Jun 17, 2008
On my server I'd like to keep sites as fast as possible and not drain too much on the server. I don't have many users, but I'd like to get it right the first time. What's the best DB engine to use? What about other settings? I'm not sure I should run caching yet, I'm not under much load.
The server is running on Windows.
View 5 Replies
View Related