I have a server that is running linux with WHM/cPanel , some of servers are rejecting mails through server and says that your server is open proxy mail server.
how to check that our server is open proxy or stop open proxy and how can i prevent our server from spammer?
I'm having problems with users using open proxies accessing, abusing, and defacing my website.
I'd like to get a list of all open proxies and incorporate it into my site (i.e. block open proxy accesses)
I've already looked at SORBS, but that is DNS based, and I'm not sure I want to go that route. (I am running one DNS server for my own webserver to use. Don't want to mess with adding another zone for the dnsbl).
I've be much happier building my own php/mysql lookup of the proxy blacklist.
So I'm looking for somewhere I can simply download a proxy blacklist, and update it periodically as needed.
I'm trying to fix a problem with open proxy on my website. It's running ubuntu & apache2. I also run pfsense for a firewall with snort. I have a SSL for the website, so I have regular port 80 redirect to https.
At first I did notice right away when I checked & saw this happen that proxy was turned on. So I got that turned off.
My firewall is still allowing these bad IPs to port 80. I would like to figure out what I could turn on the firewall or snort to stop those connections in addition to what needs fixing in apache. I've read the solution is to make the redirects go to a 403 error page.
I also tried adding a mod_security rule but ended up blocking all people from website, though I may have accidentally turned some other rules on too.
There are a few different problems it looks like.
First - It looks like they're trying to connect to my HTTPS then redirect to an ad through my domain name?
Second - It looks like they're still trying to use my website for open proxy but directly accessing ib.adnxs.com through my port 80. My logs indicate I'm redirecting to a 301 page.
Is it possible to use a Central MailServer Proxy (eg. Dovecot Director/Proxy or Nginx). We have many Plesk Server. All with Postfix and Dovecot.... On each Server is a SSL Cert for MailService but we want ONE Host... mail.example.com with one SSL Cert.
How is it possible to Sync the User from all Hosts with a MailProxy? Only so customers can be transferred from server to server.
[URL] ....
During last week, two of our clients' accounts got compromised (most probably due to weak passwords) and there was a CGI script installed which started sending emails to more than 200,000 email accounts. This email addresses were stored in a text file.
By the time we noticed this activity, our server got black listed on major RBLs like Barracuda, SpamCop, Spamhaus etc and it took around 2 days to cleanup
3 days later, another account compromised with same *thing* and it really is pain in the arse now dealing with this and angry clients
We've already implemented a policy to restrict users to send 100 messages/per hour/domain which is working, but it seems this *thing* bypass exim.
I guess this Open Proxy Servers a Source of Spam is what i want to explain!
So my question is, if I've understood this right, is it possible to stop scripts like this or can we enforce mailman to use exim all the time to send messages and stop direct-mailing?
I have dedicated server..i installed cpanel on it but when am accessing it
[url]
i am not able to open it..so i think port is not open so can any one tell me how to open ports...the os installed is centos..
A potential client asked us the followingo you allow PHP to open sockets on your server? If yes, is there any restriction on the amount of data that can be downloaded?
Will we be able to access and load our remote webpage using PHP? We will use sockets and a Pear library to accomplish this.
We are basically planning on using some content from our remote site on the new site which will be hosted on your servers. Kindly reply back at the earliest.
Is this a potential spammer?
I found out that my server has open DNS. Anyone in the world can query it for domains it is not authoritative for. Is it normal?
View 6 Replies View RelatedI've run "DNS report" test for one hosting in dnsstuff.com and got this warning (as some times before for other hosts:
---------------------
Fail:
Open DNS server
ERROR: One or more of your nameservers reports that it is an open DNS server. This usually means that anyone in the world can query it for domains it is not authoritative for (it is possible that the DNS server advertises that it does recursive lookups when it does not, but that shouldn't happen). This can cause an excessive load on your DNS server. Also, it is strongly discouraged to have a DNS server be both authoritative for your domain and be recursive (even if it is not open), due to the potential for cache poisoning (with no recursion, there is no cache, and it is impossible to poison it). Also, the bad guys could use your DNS server as part of an attack, by forging their IP address.
-----------------------
Is this anythhing important?
Just being doing a load of DNSstuff.com queries to try and get everything to "pass", I noticed that some big players in the hosting scene have either open or closed DNS servers.
Softlayer.com have closed, while liquidweb.com are open...?
I have changed all mine to closed, just because dnsstuff advises it, but is there any reason you would want them open..?
I am using Putty to connect to my server via ssh.
When opening a direct connection, i can login quickly without any problem
Quote:
login as: gracie
gracie@server1's password:
Last login: Thu May 7 07:31:26 2009 from 192.168.0.5
gracie@server1 [~]# sudo su -
Password:
root@server1 [~]#
When I open a connection FROM ANOTHER SERVER, I have to wait more than 20 seconds
Quote:
login as: tech2
tech2@server2's password:
Last login: Thu May 7 07:32:07 2009 from 192.168.0.5
tech2@server2 [~]# ssh gracie@192.168.0.222
Password:
After I enter the password, I waited 20 seconds before I am logged in.
Our new data center provided us with a Cisco ASA5510 firewall. We're setting up all new servers and will begin migrating all of our domains from our current co-lo to the new place.
At the old co-lo, they provided us a very basic BSD based router, and our servers all had external public facing IPs on them. Firewalling was handled at the server (Windows Firewall or Linux IPtables).
The new place is NAT'ing us, so our servers all have a 192.168.10.x address inside, and they map the external address for us through to the inside.
By default, they are locking everything down. I had to ask them to open ssh so I could remote into my CentOS box last night.
I'm not a network guru-- what ports are going to NEED to be opened so I can give them a list? This is a standard PLESK hosting server so http (80), https, ssh, ftp, pop3, smtp, what else? Anyone have a list?
subdomains on my dedicated server with co.il endings (israeli) dont work though with com domains they do work i anybody has a clue for fixing this? maybe its DNS directing problems.
View 2 Replies View RelatedI have a proxy site which is hosted with a proxy host, do i have to use proxy hosting as i have an account with another host i might want to use. The proxy hosting has run out.
View 2 Replies View RelatedI'm outsourcing some works overseas and my oversea employees are directly contacting the customer to discuss his needs. Everything is fine except when a client sees the email IP address (he is dealing with a local company, how come he is being emailed me from India or some similar places).
So I decided to create a proxy server for the oversea employees. I need the one that requires the browser setting change to have all the traffic passing through the server/VPS, therefore the IP will be the IP of the server and there's no way to find the original IP (of course no problem is it exists in the proxy server, but not showing in any way to the customer).
The problem is I absolutely have no idea how to do this.
- Can this be accomplished on a VPS or a server is required?
- Do I need a Linux or Windows OS?
- Do I need any software? If so, could you recommend some.
I have heard those words hundreds of time an never have asked or read about.
View 3 Replies View RelatedDoes any one know any good proxy program other then Squid proxy, It seem to have higher load on the when Squid
View 7 Replies View RelatedI would like to run a proxy server up on a VPS which listens on 8080 for example to serve users,
View 2 Replies View RelatedI have a Linux VPS where I set up Squid to use it as a proxy server from my laptop.
On a VPS with Windows Server 2003 and IIS 6, how could I do the same thing I already do with Squid on Linux?
I knew that there was an application called Microsoft Server Proxy but it was discontinued by Microsoft.
Thought this might be of interest to folks on WHT. We put together a solution using Nginx ( Engine-X ) to do Global Server Load Balancing. This solution lets you do GSLB without having to fork over $26k per site to F5 or Foundry.
Thought it would be of interest to both end-users as well as dedicated hosting providers who might want to make it into a service (eg. sell a dedicated host in Europe and the US as a group, with the solution pre-installed).
The entire project, including relavent configs is available for download in the latest ( issue 6 ) FREE issue of o3 magazine (o3magazine.com)
I want to set up a dedicated server for spam and virus filtering (MX)
But i was wondering, is there a good opensource based tool for this?
How can I open port 3000 on my linux server.
I need it for Canada Post live shipping quotes.
I'd like to set up my server as a proxy for my own private use, where in my home PC's browser I can tell it the server's IP, port, and the password that I set, and it will function like a normal proxy. How can I do that? What software do I need and so on.
All my servers are on Linux machines.
a simple reverse proxy server but with good re-write rules engine.
View 5 Replies View RelatedDoes anyone have services to recommend? I simply need a proxy server so I have a private IP. Right now, my ISP assigns IPs as a pool among a lot of people, so downloading sites like rapidshare or megafile doesn't work for me.
What I need is a socks5 proxy that is available 24/7, dedicated private ip, and a fast server. Does anyone offer these types of information? What I am afaid of is that people may install keyloggers over free proxies or even some companies may do that as well,
Will i need a dedicated server for my proxy site, www.ipcover.info
If so, are there any cheap ones?
Uses about 1gb/day
400 unique visits in the past week.
About 100 visits/day
what rules should I add to IPtables on my dedicated server to use it as a proxy for my own IP only?
For example: my dedicated server IP is: 1.1.1.1
My local IP is: 2.2.2.2
I want to setup on my browse: proxy server 1.1.1.1, port 3128
What rules should I add to iptables for my dedicated server to act as a proxy but allow this only to my local IP (2.2.2.2)?