I ran my mail server through an SMTP diagnostic tool at:
And the one warning it gave was "WARNING! Your server could be an open relay."
This was for an out-of-the-box cpanel/exim configuration on a dedicated server. Can someone help me understand how this warning is detected/tested for, and what I can do to resolve it? My understanding was that cpanel will not set up an open relay by default?
Somehow I've opened up my postfix server to act as an open relay and it's already being taken advantage of. The following is my postconf
2bounce_notice_recipient = postmaster
access_map_reject_code = 554
address_verify_default_transport = $default_transport
address_verify_local_transport = $local_transport
address_verify_map =
address_verify_negative_cache = yes
address_verify_negative_expire_time = 3d
address_verify_negative_refresh_time = 3h
address_verify_poll_count = 3
address_verify_poll_delay = 3s
address_verify_positive_expire_time = 31d
address_verify_positive_refresh_time = 7d
address_verify_relay_transport = $relay_transport
address_verify_relayhost = $relayhost
address_verify_sender = postmaster
address_verify_sender_dependent_relayhost_maps = $sender_dependent_relayhost_maps
address_verify_service_name = verify
address_verify_transport_maps = $transport_maps
address_verify_virtual_transport = $virtual_transport
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
allow_mail_to_commands = alias, forward
allow_mail_to_files = alias, forward
allow_min_user = no
allow_percent_hack = yes
allow_untrusted_routing = no
alternate_config_directories =
always_bcc =
anvil_rate_time_unit = 60s
anvil_status_update_time = 600s
append_at_myorigin = yes
append_dot_mydomain = yes
application_event_drain_time = 100s
authorized_flush_users = static:anyone
authorized_mailq_users = static:anyone
authorized_submit_users = static:anyone
backwards_bounce_logfile_compatibility = yes
berkeley_db_create_buffer_size = 16777216
berkeley_db_read_buffer_size = 131072
best_mx_transport =
biff = yes
body_checks =
body_checks_size_limit = 51200
bounce_notice_recipient = postmaster
bounce_queue_lifetime = 5d
bounce_service_name = bounce
bounce_size_limit = 50000
bounce_template_file =
broken_sasl_auth_clients = yes
canonical_classes = envelope_sender, envelope_recipient, header_sender, header_recipient
canonical_maps = hash:/etc/postfix/canonical
cleanup_service_name = cleanup
command_directory = /usr/sbin
command_execution_directory =
command_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
command_time_limit = 1000s
config_directory = /etc/postfix
connection_cache_protocol_timeout = 5s
connection_cache_service_name = scache
connection_cache_status_update_time = 600s
connection_cache_ttl_limit = 2s
content_filter =
daemon_directory = /usr/libexec/postfix
daemon_timeout = 18000s
debug_peer_level = 2
debug_peer_list =
default_database_type = hash
default_delivery_slot_cost = 5
default_delivery_slot_discount = 50
default_delivery_slot_loan = 3
default_destination_concurrency_limit = 20
default_destination_recipient_limit = 50
default_extra_recipient_limit = 1000
default_minimum_delivery_slots = 3
default_privs = nobody
default_process_limit = 100
default_rbl_reply = $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using $rbl_domain${rbl_reason?; $rbl_reason}
default_recipient_limit = 10000
default_transport = smtp
default_verp_delimiters = +=
defer_code = 450
defer_service_name = defer
defer_transports =
delay_logging_resolution_limit = 2
delay_notice_recipient = postmaster
delay_warning_time = 0h
deliver_lock_attempts = 20
deliver_lock_delay = 1s
disable_dns_lookups = no
disable_mime_input_processing = no
disable_mime_output_conversion = no
disable_verp_bounces = no
disable_vrfy_command = no
dont_remove = 0
double_bounce_sender = double-bounce
duplicate_filter_limit = 1000
empty_address_recipient = MAILER-DAEMON
enable_original_recipient = yes
error_notice_recipient = postmaster
error_service_name = error
execution_directory_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
expand_owner_alias = no
export_environment = TZ MAIL_CONFIG LANG
fallback_transport =
fallback_transport_maps =
fast_flush_domains = $relay_domains
fast_flush_purge_time = 7d
fast_flush_refresh_time = 12h
fault_injection_code = 0
flush_service_name = flush
fork_attempts = 5
fork_delay = 1s
forward_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
forward_path = $home/.forward${recipient_delimiter}${extension}, $home/.forward
frozen_delivered_to = yes
hash_queue_depth = 1
hash_queue_names = deferred, defer
header_address_token_limit = 10240
header_checks =
header_size_limit = 102400
helpful_warnings = yes
home_mailbox =
hopcount_limit = 50
html_directory = no
ignore_mx_lookup_error = no
import_environment = MAIL_CONFIG MAIL_DEBUG MAIL_LOGTAG TZ XAUTHORITY DISPLAY LANG=C
in_flow_delay = 1s
inet_interfaces = all
inet_protocols = ipv4
initial_destination_concurrency = 5
internal_mail_filter_classes =
invalid_hostname_reject_code = 501
ipc_idle = 100s
ipc_timeout = 3600s
ipc_ttl = 1000s
line_length_limit = 2048
lmtp_bind_address =
lmtp_bind_address6 =
lmtp_cname_overrides_servername = no
lmtp_connect_timeout = 0s
lmtp_connection_cache_destinations =
lmtp_connection_cache_on_demand = yes
lmtp_connection_cache_time_limit = 2s
lmtp_connection_reuse_time_limit = 300s
lmtp_data_done_timeout = 600s
lmtp_data_init_timeout = 120s
lmtp_data_xfer_timeout = 180s
lmtp_defer_if_no_mx_address_found = no
lmtp_destination_concurrency_limit = $default_destination_concurrency_limit
lmtp_destination_recipient_limit = $default_destination_recipient_limit
lmtp_discard_lhlo_keyword_address_maps =
lmtp_discard_lhlo_keywords =
lmtp_enforce_tls = no
lmtp_generic_maps =
lmtp_host_lookup = dns
lmtp_lhlo_name = $myhostname
lmtp_lhlo_timeout = 300s
lmtp_line_length_limit = 990
lmtp_mail_timeout = 300s
lmtp_mx_address_limit = 5
lmtp_mx_session_limit = 2
lmtp_pix_workaround_delay_time = 10s
lmtp_pix_workaround_threshold_time = 500s
lmtp_quit_timeout = 300s
lmtp_quote_rfc821_envelope = yes
lmtp_randomize_addresses = yes
lmtp_rcpt_timeout = 300s
lmtp_rset_timeout = 20s
lmtp_sasl_auth_enable = no
lmtp_sasl_mechanism_filter =
lmtp_sasl_password_maps =
lmtp_sasl_path =
lmtp_sasl_security_options = noplaintext, noanonymous
lmtp_sasl_tls_security_options = $lmtp_sasl_security_options
lmtp_sasl_tls_verified_security_options = $lmtp_sasl_tls_security_options
lmtp_sasl_type = cyrus
lmtp_send_xforward_command = no
lmtp_sender_dependent_authentication = no
lmtp_skip_5xx_greeting = yes
lmtp_starttls_timeout = 300s
lmtp_tcp_port = 24
lmtp_tls_CAfile =
lmtp_tls_CApath =
lmtp_tls_cert_file =
lmtp_tls_dcert_file =
lmtp_tls_dkey_file = $lmtp_tls_dcert_file
lmtp_tls_enforce_peername = yes
lmtp_tls_exclude_ciphers =
lmtp_tls_key_file = $lmtp_tls_cert_file
lmtp_tls_loglevel = 0
lmtp_tls_mandatory_ciphers = medium
lmtp_tls_mandatory_exclude_ciphers =
lmtp_tls_mandatory_protocols = SSLv3, TLSv1
lmtp_tls_note_starttls_offer = no
lmtp_tls_per_site =
lmtp_tls_policy_maps =
lmtp_tls_scert_verifydepth = 5
lmtp_tls_secure_cert_match = nexthop
lmtp_tls_security_level =
lmtp_tls_session_cache_database =
lmtp_tls_session_cache_timeout = 3600s
lmtp_tls_verify_cert_match = hostname
lmtp_use_tls = no
lmtp_xforward_timeout = 300s
local_command_shell =
local_destination_concurrency_limit = 2
local_destination_recipient_limit = 1
local_header_rewrite_clients = permit_inet_interfaces
local_recipient_maps = proxy:unix:passwd.byname $alias_maps
local_transport = local:$myhostname
luser_relay =
mail_name = Postfix
mail_owner = postfix
mail_release_date = 200600825
mail_spool_directory = /var/mail
mail_version = 2.3.3
mailbox_command =
mailbox_command_maps =
mailbox_delivery_lock = fcntl, dotlock
mailbox_size_limit = 51200000
mailbox_transport =
mailbox_transport_maps =
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
maps_rbl_domains =
maps_rbl_reject_code = 554
masquerade_classes = envelope_sender, header_sender, header_recipient
masquerade_domains =
masquerade_exceptions =
max_idle = 100s
max_use = 100
maximal_backoff_time = 4000s
maximal_queue_lifetime = 5d
message_reject_characters =
message_size_limit = 10240000
message_strip_characters =
milter_command_timeout = 30s
milter_connect_macros = j {daemon_name} v
milter_connect_timeout = 30s
milter_content_timeout = 300s
milter_data_macros = i
milter_default_action = tempfail
milter_end_of_data_macros = i
milter_helo_macros = {tls_version} {cipher} {cipher_bits} {cert_subject} {cert_issuer}
milter_macro_daemon_name = $myhostname
milter_macro_v = $mail_name $mail_version
milter_mail_macros = i {auth_type} {auth_authen} {auth_author} {mail_addr}
milter_protocol = 2
milter_rcpt_macros = i {rcpt_addr}
milter_unknown_command_macros =
mime_boundary_length_limit = 2048
mime_header_checks = $header_checks
mime_nesting_limit = 100
minimal_backoff_time = 1000s
multi_recipient_bounce_reject_code = 550
mydestination = localhost.$mydomain, localhost, $mydomain, $myhostname
mydomain = thatscriptguy.com
myhostname = thatscriptguy.com
mynetworks = 127.0.0.0/8 66.90.121.0/24
mynetworks_style = subnet
myorigin = $myhostname
nested_header_checks = $header_checks
newaliases_path = /usr/bin/newaliases.postfix
non_fqdn_reject_code = 504
non_smtpd_milters =
notify_classes = resource, software
owner_request_special = yes
parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_authorized_clients,relay_domains,smtpd_access_maps
permit_mx_backup_networks =
pickup_service_name = pickup
plaintext_reject_code = 450
prepend_delivered_header = command, file, forward
process_id_directory = pid
propagate_unmatched_extensions = canonical, virtual
proxy_interfaces =
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks
qmgr_clog_warn_time = 300s
qmgr_fudge_factor = 100
qmgr_message_active_limit = 20000
qmgr_message_recipient_limit = 20000
qmgr_message_recipient_minimum = 10
qmqpd_authorized_clients =
qmqpd_error_delay = 1s
qmqpd_timeout = 300s
queue_directory = /var/spool/postfix
queue_file_attribute_count_limit = 100
queue_minfree = 0
queue_run_delay = 1000s
queue_service_name = qmgr
rbl_reply_maps =
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
receive_override_options =
recipient_bcc_maps =
recipient_canonical_classes = envelope_recipient, header_recipient
recipient_canonical_maps =
recipient_delimiter =
reject_code = 554
relay_clientcerts =
relay_destination_concurrency_limit = $default_destination_concurrency_limit
relay_destination_recipient_limit = $default_destination_recipient_limit
relay_domains = $mydestination
relay_domains_reject_code = 554
relay_recipient_maps =
relay_transport = relay
relayhost =
relocated_maps =
remote_header_rewrite_domain =
require_home_directory = no
resolve_dequoted_address = yes
resolve_null_domain = no
resolve_numeric_domain = no
rewrite_service_name = rewrite
sample_directory = /usr/share/doc/postfix-2.3.3/samples
sender_bcc_maps =
sender_canonical_classes = envelope_sender, header_sender
sender_canonical_maps = hash:/etc/postfix/canonical
sender_dependent_relayhost_maps =
sendmail_path = /usr/sbin/sendmail.postfix
service_throttle_time = 60s
setgid_group = postdrop
show_user_unknown_table_name = yes
showq_service_name = showq
smtp_always_send_ehlo = yes
smtp_bind_address =
smtp_bind_address6 =
smtp_cname_overrides_servername = no
smtp_connect_timeout = 30s
smtp_connection_cache_destinations =
smtp_connection_cache_on_demand = yes
smtp_connection_cache_time_limit = 2s
smtp_connection_reuse_time_limit = 300s
smtp_data_done_timeout = 600s
smtp_data_init_timeout = 120s
smtp_data_xfer_timeout = 180s
smtp_defer_if_no_mx_address_found = no
smtp_destination_concurrency_limit = $default_destination_concurrency_limit
smtp_destination_recipient_limit = $default_destination_recipient_limit
smtp_discard_ehlo_keyword_address_maps =
smtp_discard_ehlo_keywords =
smtp_enforce_tls = no
smtp_fallback_relay = $fallback_relay
smtp_generic_maps =
smtp_helo_name = $myhostname
smtp_helo_timeout = 300s
smtp_host_lookup = dns
smtp_line_length_limit = 990
smtp_mail_timeout = 300s
smtp_mx_address_limit = 5
smtp_mx_session_limit = 2
smtp_never_send_ehlo = no
smtp_pix_workaround_delay_time = 10s
smtp_pix_workaround_threshold_time = 500s
smtp_quit_timeout = 300s
smtp_quote_rfc821_envelope = yes
smtp_randomize_addresses = yes
smtp_rcpt_timeout = 300s
smtp_rset_timeout = 20s
smtp_sasl_auth_enable = no
smtp_sasl_mechanism_filter =
smtp_sasl_password_maps =
smtp_sasl_path =
smtp_sasl_security_options = noplaintext, noanonymous
smtp_sasl_tls_security_options = $smtp_sasl_security_options
smtp_sasl_tls_verified_security_options = $smtp_sasl_tls_security_options
smtp_sasl_type = cyrus
smtp_send_xforward_command = no
smtp_sender_dependent_authentication = no
smtp_skip_5xx_greeting = yes
smtp_skip_quit_response = yes
smtp_starttls_timeout = 300s
smtp_tls_CAfile =
smtp_tls_CApath =
smtp_tls_cert_file =
smtp_tls_dcert_file =
smtp_tls_dkey_file = $smtp_tls_dcert_file
smtp_tls_enforce_peername = yes
smtp_tls_exclude_ciphers =
smtp_tls_key_file = $smtp_tls_cert_file
smtp_tls_loglevel = 0
smtp_tls_mandatory_ciphers = medium
smtp_tls_mandatory_exclude_ciphers =
smtp_tls_mandatory_protocols = SSLv3, TLSv1
smtp_tls_note_starttls_offer = no
smtp_tls_per_site =
smtp_tls_policy_maps =
smtp_tls_scert_verifydepth = 5
smtp_tls_secure_cert_match = nexthop, dot-nexthop
smtp_tls_security_level =
smtp_tls_session_cache_database =
smtp_tls_session_cache_timeout = 3600s
smtp_tls_verify_cert_match = hostname
smtp_use_tls = no
smtp_xforward_timeout = 300s
smtpd_authorized_verp_clients = $authorized_verp_clients
smtpd_authorized_xclient_hosts =
smtpd_authorized_xforward_hosts =
smtpd_banner = $myhostname ESMTP $mail_name
smtpd_client_connection_count_limit = 50
smtpd_client_connection_rate_limit = 0
smtpd_client_event_limit_exceptions = ${smtpd_client_connection_limit_exceptions:$mynetworks}
smtpd_client_message_rate_limit = 0
smtpd_client_new_tls_session_rate_limit = 0
smtpd_client_recipient_rate_limit = 0
smtpd_client_restrictions =
smtpd_data_restrictions =
smtpd_delay_open_until_valid_rcpt = yes
smtpd_delay_reject = yes
smtpd_discard_ehlo_keyword_address_maps =
smtpd_discard_ehlo_keywords =
smtpd_end_of_data_restrictions =
smtpd_enforce_tls = no
smtpd_error_sleep_time = 1s
smtpd_etrn_restrictions =
smtpd_expansion_filter = 40!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[]^_`abcdefghijklmnopqrstuvwxyz{|}~
smtpd_forbidden_commands = CONNECT GET POST
smtpd_hard_error_limit = 20
smtpd_helo_required = no
smtpd_helo_restrictions =
smtpd_history_flush_threshold = 100
smtpd_junk_command_limit = 100
smtpd_milters =
smtpd_noop_commands =
smtpd_null_access_lookup_key = <>
smtpd_peername_lookup = yes
smtpd_policy_service_max_idle = 300s
smtpd_policy_service_max_ttl = 1000s
smtpd_policy_service_timeout = 100s
smtpd_proxy_ehlo = $myhostname
smtpd_proxy_filter =
smtpd_proxy_timeout = 100s
smtpd_recipient_limit = 1000
smtpd_recipient_overshoot_limit = 1000
smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated reject_unauth_destination
smtpd_reject_unlisted_recipient = yes
smtpd_reject_unlisted_sender = no
smtpd_restriction_classes =
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = no
smtpd_sasl_exceptions_networks =
smtpd_sasl_local_domain =
smtpd_sasl_path = smtpd
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_sasl_type = cyrus
smtpd_sender_login_maps =
smtpd_sender_restrictions =
smtpd_soft_error_limit = 10
smtpd_starttls_timeout = 300s
smtpd_timeout = 300s
smtpd_tls_CAfile =
smtpd_tls_CApath =
smtpd_tls_always_issue_session_ids = yes
smtpd_tls_ask_ccert = no
smtpd_tls_auth_only = no
smtpd_tls_ccert_verifydepth = 5
smtpd_tls_cert_file =
smtpd_tls_dcert_file =
smtpd_tls_dh1024_param_file =
smtpd_tls_dh512_param_file =
smtpd_tls_dkey_file = $smtpd_tls_dcert_file
smtpd_tls_exclude_ciphers =
smtpd_tls_key_file = $smtpd_tls_cert_file
smtpd_tls_loglevel = 0
smtpd_tls_mandatory_ciphers = medium
smtpd_tls_mandatory_exclude_ciphers =
smtpd_tls_mandatory_protocols = SSLv3, TLSv1
smtpd_tls_received_header = no
smtpd_tls_req_ccert = no
smtpd_tls_security_level =
smtpd_tls_session_cache_database =
smtpd_tls_session_cache_timeout = 3600s
smtpd_tls_wrappermode = no
smtpd_use_tls = no
soft_bounce = no
stale_lock_time = 500s
strict_7bit_headers = no
strict_8bitmime = no
strict_8bitmime_body = no
strict_mime_encoding_domain = no
strict_rfc821_envelopes = no
sun_mailtool_compatibility = no
swap_bangpath = yes
syslog_facility = mail
syslog_name = postfix
tls_daemon_random_bytes = 32
tls_export_cipherlist = ALL:+RC4:@STRENGTH
tls_high_cipherlist = !EXPORT:!LOW:!MEDIUM:ALL:+RC4:@STRENGTH
tls_low_cipherlist = !EXPORT:ALL:+RC4:@STRENGTH
tls_medium_cipherlist = !EXPORT:!LOW:ALL:+RC4:@STRENGTH
tls_null_cipherlist = !aNULL:eNULL+kRSA
tls_random_bytes = 32
tls_random_exchange_name = ${config_directory}/prng_exch
tls_random_prng_update_period = 3600s
tls_random_reseed_period = 3600s
tls_random_source = dev:/dev/urandom
trace_service_name = trace
transport_maps =
transport_retry_time = 60s
trigger_timeout = 10s
undisclosed_recipients_header = To: undisclosed-recipients:;
unknown_address_reject_code = 450
unknown_client_reject_code = 450
unknown_hostname_reject_code = 450
unknown_local_recipient_reject_code = 550
unknown_relay_recipient_reject_code = 550
unknown_virtual_alias_reject_code = 550
unknown_virtual_mailbox_reject_code = 550
unverified_recipient_reject_code = 450
unverified_sender_reject_code = 450
verp_delimiter_filter = -=+
virtual_alias_domains = $virtual_alias_maps
virtual_alias_expansion_limit = 1000
virtual_alias_maps = hash:/etc/postfix/virtual
virtual_alias_recursion_limit = 1000
virtual_destination_concurrency_limit = $default_destination_concurrency_limit
virtual_destination_recipient_limit = $default_destination_recipient_limit
virtual_gid_maps =
virtual_mailbox_base =
virtual_mailbox_domains = $virtual_mailbox_maps
virtual_mailbox_limit = 51200000
virtual_mailbox_lock = fcntl
virtual_mailbox_maps =
virtual_minimum_uid = 100
virtual_transport = virtual
virtual_uid_maps =
Any help is very much appreciated.
i have to get rid of an open relay state on my server, and i cant do it! i have antirelayd on my WHM but it seems its not working, any idea? please or at least wich line in /scripts/antirelayd i have to check to see if its everything ok.
i saw an older post, tried everything but nothing works x_X
How Do I disable Open Relay in cpanel?
My "Top Email Relayers" is not empty in cpanel.
I have been having issues with spam on my mail server. I tested the server at abuse.net and test 6 fails with the following result:
Relay test 6
>>> RSET
<<< 250 Reset OK
>>> MAIL FROM:<spamtest@mydomain.com>
<<< 250 OK
>>> RCPT TO:<admin%abuse.net@mydomain.com>
<<< 250 Accepted
>>> DATA
<<< 354 Enter message, ending with "." on a line by itself
>>> (message body)
<<< 250 OK id=1MGLZF-0002Jz-IZ
I have been trying for hours to close this hole with no success. I am running the server using cPanel / WHM which supposedly closes open relay by default, I have tried tweaking the settings,
I have set up my Virtual Private Server and uploaded all my site's files to /var/www folder. Before that, there was an old simple 'index.html' file
Code:
<html>
<head>
<title>INDEX</title>
</head>
<body>
<h1>IT WORKS!!!!</h1>
</body>
</html>
and when I typed the address www.mydomain.com it displayed correctly. Then I deleted this html and uploaded my files through FTP and now the browser says :
Code:
Warning: Unknown: failed to open stream: Permission denied in Unknown on line 0
Fatal error: Unknown: Failed opening required '/var/www/index.php' (include_path='.:/usr/share/php:/usr/share/pear') in Unknown on line 0
A while ago i had signed up with the affiliate program of 3ix.com webhosting.
After a few months some commisiions had been confirmed insid their panel, when all of a sudden further access had been denied.
Since two months they keep on mailing lies such as the affilate manager will respond, we are working on it etc.
But now they no longer respond and it seems, that 3ix.com will be vanishing soon with more and more complaints arriving at the FBI internet fraud department.
Certainly not a host, that deserves any trust.
dnsreport(.com) displays this warning for my domain:
Quote:
WARNING: Your SOA (Start of Authority) record states that your master (primary) name server is: server1.[domain].com.. However, that server is not listed at the parent servers as one of your NS records! This is legal, but you should be sure that you know what you are doing.
Although I've created an SOA in my Windows DNS Console. Whats it then?
Also, it says:
Quote:
ERROR: I couldn't find any MX records for [domain].com. If you want to receive E-mail on this domain, you should have MX record(s). Without any MX records, mailservers should attempt to deliver mail to the A record for [domain].com. I can't continue in a case like this, so I'm assuming you don't receive mail on this domain.
Whereas I've already created an MX record - mail.[domain].com
around in cpanel and noticed a change in the Apache Update menu.
Also noticed this popup at the top of Easy::Apache v3.2.0 Build 3473
Quote:
Warning (VZ): You are only only guaranteed 496 Megabytes of ram! 512 Megabytes is recommended. ! Warning (VZ): You are only only guaranteed 227 Megabytes of ram when the system is out of ram! 512 Megabytes is recommended. ! Pre allocation testing was successfully able to allocate 90MB ! Ouput from '/bin/sh -c "ulimit -a"': core file size (blocks, -c) 262144 data seg size (kbytes, -d) unlimited file size (blocks, -f) unlimited max locked memory (kbytes, -l) 32 max memory size (kbytes, -m) 262144 open files (-n) 1024 pipe size (512 bytes, -p) 8 stack size (kbytes, -s) unlimited cpu time (seconds, -t) unlimited max user processes (-u) 71680 virtual memory (kbytes, -v) 262144
Currently using a 512MB VPS with CentOS
Anything is should be concerned about or am i not getting my full 512Mb VPS as i should be?
My opinion: Do NOT EVEN CONSIDER using HOSTGATOR.
My experience:
I signed up for their hosting on Sunday morning and completed payment for the first month using hostgators online payment system and paypal.
The payment was accepted and confirmed. An email was sent some time later confirming the account had been set up.
The email specified a user ID for cpanel as well as nameservers which I used to point two of my domains at the new hostgator account.
I used cpanel and FTP to set up the add-on domain, create some email accounts and upload content for the two domains (the same content as on the old servers which should now be shown k-free.co.uk and offshoreharry.com).
All appeared to work fine with no problems. I could use outlook to access email and the web sites were available on the new server (the old server was down).
A day and a half later, I WAS HORRIFIED TO SEE
- the emails accounts could not be accessed
- the cpanel user did not work
- Hostgator did not email me or attempt to contact me in any way to tell me there was an issue. (they had my valid mobile phone number - there are no unidentified calls in the period concerned).
- the web sites that had been pointed at hoistgator were showing a suspended message and spammy hostgator context ads. My non-spam mostly non-ads content had been uploaded to the hostgator account.
One of those domains is freeware software on a site with ZERO ADS that has never been moneterised and sometimes gets 100's of uniques a day.
HOSTGATOR WAS STEALING TRAFFIC FROM MY ad free unmonetized site and showing a nasty spammy ad page.
Not only was I rather angry but also amazed that any company would ever do this. Just think how you would feel if all your sites - pages were hijacked and showing some of the nasty ad pages.
My opinion: Do NOT EVEN CONSIDER using HOSTGATOR.
Checking my yahoo email, there was no email from hostgator saying my account had been suspended (if I hadn't checked it they would have continued stealing the traffic until I noticed).
The only email from hostgator was a request for a copy of my passport or utility bill! I am left wondering if they are really a front for an identity theft scam? I am rather unhappy that they have even my name - address - tel no - paypal email.
I obviously immediately changed the nameservers on the two domains back to the old servers. But since nameserver changes take upto 72 hours to fully propogator, hostgator could still be stealing some of my traffic now. The two sites contain nothing that any T+C I have ever seen would have any reason whatsoever to see as a problem. The two sites are k-free.co.uk and offshoreharry.com for anyone here who wishes to verify this claim.
Hostgator COULD be showing my content instead of their spammy ads - I uploaded it.
Hostgator was mentioned by a few on here and I thought them to be a big company who have a reputation to protect. Are you guys really comfortable with a company who behaves like this. Will they suddenly suspend your sites tomorrow and steal your traffic until you happen to notice?
I have requested to them that they provide access TO MY PERSONAL AND BUSINESS EMAILS on the email accounts I set up. I would also like any log data that was collected. I will report back here what the response to that (politely worded) request is. Giving me access to any email and log data that they have effectively kidnapped-stolen hardly makes amends for the wrong they have already done. Like any other victim of a common thief I may just have to accept that I lost something and will not see it again.
Additionally, search engine robots may have visited the sites and got 404s, any users who dropped by will certainly not be back, the damage caused is ongoing and difficult to fully quantify.
Hostgator did not email me or attempt to contact me (they had my valid mobile phone number). They did not tell me why the account was suspended and the trafic STOLEN. I have had web sites for 4-5 years and have never been involved in anything remotely dubious on the web. You can judge for yourself if there is any reason for them to do this [sites offshoreharry.com, k-free.co.uk]. I had sent at most 10 emails whilst testing the 3 or 4 email accounts I was creating.
Obviously I will never use hostgator or any related company.
My opinion: Do NOT EVEN CONSIDER using HOSTGATOR ... EVER.
I recently ran into some problems:
- They doesn't support custom installation of PHPMyAdmin on their servers (You MUST use their own admin panel/pre-installed PMA or activate remote connexions)
I'm not sure to understand why PMA doesn't work, but when you create a PHP Script, you must use "MYSQLHOST" as the server host, instead of the usual "localhost". I think that PMA doesn't use the mysql_connect way to connect to the database. So maybe they doesn't allow TCP or Socket connection.
Anyway, that said, if you don't need a custom installation of PMA, you're OK for that point.
- They doesn't support the PHP FreeTypeLib, if you plan to generate image with the GD lib and add some text into it, it may be hard to get a decent result. ( Here I'm thinking of anti-bot confirmation code )
- They doesn't offer any uptime guarantee, and they have no policy in case your server will encounter sporadic down time (just the one I used did for the past 2 weeks)
... And it would be so much a problem if they where offering a reliable service and/or if they where standing behind their costumers. For that, I've been a little deceived.
{
More about the down time experience:
So we have contacted the support team, who said that the site is working well at the moment where we called. They doesn't seem to understand what an intermittent problem is.
They said that, as they doesn't see the trouble at the time of the call, they canot do anything (I was expecting them to place an http probe/monitor or something)
They asked us to take a screenshot of our browser next time that we encounter a down time. ( yes, I'm NOT kidding... a screenshot ! That's what I call technical support
}
I'm not ready to say that they are a bad hosting service, but, they are a little special as you see.
This company has acquired a lot of smaller hosting companies over the last few years including budget only2dollars. Be warned they have ceased responding to support requests, none of the contact links work (even for sales) and they are not even responding to faxes. It is still possible to automatically purchase hosting via web forms of the companies they own. I could be wrong but it has all the hallmarks of a company in trouble and I would be very careful about purchasing any hosting with them until the situation becomes clearer.
View 4 Replies View RelatedIt takes a lot to piss me off, and HostGator's done it. I opened an account with HostGator on behalf of a client of mine. Then the client decided he wanted to consolidate a few other web sites to the same server, so I opened a reseller account on HostGator and asked them to move the original account into the reseller account.
My client got billed for both the original (empty) account and the reseller account.
HostGator's sales account is refusing to refund my client the money for the original account saying that I neglected to fill out a "cancellation request" form. But, and perhaps this was silly of me, I assumed that when you move a hosting account into a reseller account, they'd close the original account. Or at least TELL you that you had to fill out a "cancellation request" form.
They're referring to some paragraph in my original "contract" with them that mentions this cancellation request form. So, they may be technically right, but it seems to me that asking for an account to be moved into a reseller account would constitute a cancellation request.
Now, let's give them the benefit of the doubt, and that I should have gone back to my original agreement with HostGator and noticed that I was obliged to fill out this cancellation request. Even so, I'm planning on canceling another account I have with them over this I'm so pissed. So by not refunding a lousy $14.95, they're losing a customer for life. Somehow that doesn't sound smart. And I'm so tired of dealing with stupid people or companies. I just won't do it. There are too many other web hosts out there for me to put up with this kind of attitude.
I ordered a server from fasthosts.co.uk in May after speaking to their sales over the phone. Once I had worked out that it was something that we could try I said that’s fine I will order it online. NO NO I was told I can order it for you here and set everything up for you. Great... I gave the girl I think her name was Flik or Flic from fasthosts all my details and she set everything up in a few hours. GREAT
Now here is the bad part...
Tried to cancel the server and have been told that it's a minimum term of 12 month. I have also been charged since then another £79.00. Called my credit card company to try and stop the transactions for now as you can't delete the details on the fasthost control panel.
I have email support so many times and also spoken to them on the phone. I have tried to speak to other managers but they keep saying that there is no ones available to talk to.
My main post is I was not told that this was a minimum of 12 months and would have never agreed to this. I did check when you sign up online and they do place the T&C's deep in their small print. I now know why the girl from Fasthosts wanted to take the order over the phone.
Here is my letter I send to them. Next step is ofcom but if you have any ideas please let me know.
Dear Fast Hosts
I am writing to you in regards to a server that I ordered over the phone with one of your sales people in April. As I recall her name was Flick and her contact number is 01452 561831.
I ordered this server to use as a back up for some of our company files and discussed this with your sales staff. We agreed that getting a Windows server was the best option for what we needed and the server was ordered over the phone.
We were not too sure if the server was what we needed but we thought that we would give it a go and see.
After a week or so I released that we didn’t really need the server as we could use our public folders with the exchange email service that we have with you and if we ran out of space I could always buy some more.
I sent an email to you on 30th May requesting cancellation and received an email back 2 days later advising me that it was a minimum one year’s contact. I have since sent several emails to your support and sales explaining that I was never told that this was a year contact as I ordered on the phone. I was not even told the price.
It's simple... How can I agree to those terms and conditions when I was not made aware of them? I would have never agreed or signed up for a year's contract. I have not used this server and only wanted to try it out. When I ordered over the phone I was never told that it was for a year. Your calls must be recorded and you can check.
I am a consultant for a large mobile operators call centre in ******* and this is poor service.
Please cancel this server and review your sales policies as they are against trading standards.
I also notified you about the cancellation on 30th May and was charged for another month on 4th June. Please arrange a refund for that month to avoid charge back. I am happy to pay the first months payment.
I have other services with Fast Host that I have had for several years. We are a web company and do recommend Fasthosts for UK hosting as we have had a great experience with you in the past.
The credit can be applied to our exchange hosting account domain gsynetwork.com and I believe that the username is ********
Regards
This is the type of reply you get back…… What a joke……
Further to your mail ,
All of our servers are subject to a 12 month minimum term , part of using this server is the acceptance of the terms of service which we operate subject to the normal cooling off periods associated with purchasing products and services over the phone or online. As you have gone beyond this period I cannot authorise the removal of this machine from contract.
At 6pm last night - more than 28 hours ago - my Dedicated Fasthosts server went down.
It's still down.
Despite more than 15 phone calls and several emails, they seem utterly incapable of fixing the problem.
The system drive apparently failed and was replaced today with a new drive. I then rebuilt the Linux Fedora Core and Fasthosts proceeded to add the faulty drive to the server - at my request.
However, after confirming that the drives had been installed and that the server was ready for use, guess what?
It's still down.
So not only do I currently not have a website, but my developer cannot access the failed drive in order to see what can be recovered.
I'm at the point of telling Fasthosts to stick it, but I'm not going to do that because it's their responsibility to fix their hardware and provide the service I've been paying for since 2006.
That being the case, can anyone recommend what steps I should take next in order to hold Fasthosts to account.
I would just like to give you a little warning about justhost.com. This is my experience, but I think I was just very unlucky.
I signed up last Thursday, everything seemed to be great. When signing up it said that everything will be setup within 24 hours. The money was withdrawn and I got a confirmation email from paypal.
After 30 hours I still haven't heard anything from the justhost. I checked a whois for the domain I had signed up for; it still wasn't registered. I chatted with one of their agents. I have mixed thoughts about the agents. They respond really quickly which is great, but they don't seem to have any privileges to do anything. They will only answer your questions and they will tell you who to email if something is needed to be done (from my experience).
The agent said that I should email their billing section. So I emailed them, but I didn't get any response to that ticket.
After 3 days I talked to an agent again. Same story; email billing. But they said everything will be setup within the next 24 hours. I emailed them again...
After 4 days (still nothing had happened) I talked to an agent again. He said he can't find the information about me. So I patiently emailed them my info again.
After 5 days I talk to an agent once again. I started asking why nothing has happened.
After I started getting a little angry over the chat (because nothing was happening) he shut down the conversation.
I then emailed their billing team to say I want a full refund. The refunding worked better than I would expect (since nothing had worked before). My money was refunded on paypal about 24 hours later. They apologized in the email and said that this is very unusual.
I feel that it's very unprofessional to charge a customers credit card and then lose the information about the customer and not doing anything about it.
Noticed that inside WHM>>Add Ons>>Mod Security, there is an entry with date, ip and this message: Access denied with code 406. Error normalising REQUEST_URI: Invalid URL encoding detected: not enough characters
View 1 Replies View RelatedIve been getting the following System Warning every hour since I set the server up 5 days ago and Google hasn't been a lot of help in tracking down what it means and if I should be concerned. Im hoping someone here can point me in the right direction. Im running Windows 2003 Web Edition.
Quote:
Event Type:Warning
Event Source:LSASRV
Event Category:SPNEGO (Negotiator)
Event ID:40960
Date:3/20/2007
Time:7:45:33 PM
User:N/A
Computer:B02S08MR
Description:
The Security System detected an authentication error for the server DNS/ns.ufcom.com. The failure code from authentication protocol Kerberos was "There are currently no logon servers available to service the logon request.
(0xc000005e)".
For more information, see Help and Support Center at
[url]
Data:
0000: 5e 00 00 c0
This morning I started my PC to find a little icon in the taskbar of my pc. It looked like a shield and showed a popup message with the contect
"Your computer is infected
Windows has detected spyware infection which corrupted the registry.
It is recommended to load update to prevent data loss
Windows will now download and install the most up-to-date software for you.
Click here to protect your computer"
Note that the text above was typed exactly as shown on the screen. The explanations within this registry cleaner from sysregistry.com contains broken english bits and peaces.
So I did what probably most users do and clicked on it. The tool then downloads itself and starts up.
Later when I looked at my C drive I found also other software that was downloaded (at the same time)
twxi.exe
qcfvf.exe
dlkxp.exe
jelwtpj.exe
xvggujq.exe
mbvesb.exe
jrobixo.exe
The software would redirect you to the homepage at sysregistry.com where you can conviniently pay with your CC card. ;-)
First of all I dont recall having personally invited this peace of software to sit down on my pc, so I certainly didnt feel like inputting my cc details on their homepage.
What I did is try some free or shareware tools that took care of that problem.
I wanted to research more, but the Whois DNS doesnt seem to work right now.
I have a site hosted on a vds with Godaddy. For the past couple of months, every single day I get at least 12 emails coming though with the subject title -
'Status warning from ip-218-119-109-95.ip.secureserver.net'
each email reads something as follows -
System integrity monitor on ip-218-119-109-95.ip.secureserver.net has taken action in responce to an event. Recent event logs are enclosed below for your inspection. There has been 10 events today, if an average of 8 events is reached, e-mail alerts will be terminated for the duration of the day.
>
> - Events Summary:
> Total event count: 10
> Average event count: 3
>
> - Service Summary:
> HTTP [restarted - 8 events]
> DNS [online - 1 events]
> MYSQL [online - 1 events]
>
> - System Summary:
> No system modules enabled - edit conf.sim
>
Can anyone tell me what on earth these emails mean? I don't get much sense out of Godaddy when I ask, they just state it is a monitoring system in place. I really would like to know what all these emails refer to? is it a regular happening, or something to be worried about, or what the heck do they mean?
Would really appreciate if you don't be too technical in your answer as I'm not too familiar with a lot of hosting issues. (Also please note I have altered the ip address in the email details for privacy reasons).
Basically all i want to know is this something I should be worried about?
first time I discovered the issue and I am not happy about it at all.
I was moving three of my largest sites over to a new server after performing a full cPanel backup of them completly and then FTP'ed the backups over and restored them in WHM on a new server; however, NONE of the MySQL data was saved. Now at this point I was not really worried because I knew I had weekly and daily backups so at most I was going to lose 1 month of SQL.
come to find out, NONE of the weekly or daily backups had the SQL eaither despite the fact that they are instructed to backup everyting. This leaves me with only three month old backups for these huge websites that are getting 2million+ hits a day.
Basically, I'm done.
I relied on cPanel/WHM to perform full backups which it did not. I followed all the procedures about having backups offi site and whatnot, but NONE of them have the SQL.
I am very upset, perturbed, and disappointed with the new cPanel/WHM and never should have upgraded.
I suggest anyone using it to do your own backups and do not rely on cPanel/WHM despite how tempting it may be.
my one mistake was to delete the websites off the server before they were fully restored (just so I would not have to turn off DNS clustering and whatnot). I should have checked if they were up working on the server before I deleted them off the old one. (Although I kept all the backups so I figured that would be enough).
I have a problem on my dedicated server, the boot is at 99% but i am not sure
how to fix this problem.
The server runs centos 4.5 final.
Filesystem Size Used Avail Use% Mounted on
/dev/sda3 228G 17G 199G 8% /
/dev/sda1 31M 29M 492K 99% /boot
I have got these message....is something that i must worry?
server500.hostline.gr : Nov 6 11:07:53 : sugar : user NOT in sudoers ; TTY=pts/0 ; PWD=/home/sugar/public_html/components/ebygallery ; USER=root ; COMMAND=/bin/mkdir Carnival2006
and second how i can give all he privelleges for example to user sugar to have the ability in his account to create,delete all his folders...?
we are getting a number of:
does not like recipient.
Remote host said: 550 relay not permitted
checked for IP stauts and it is not flagged or listed as banned, there would be no reason however I double checked and there were no issues there.
Can someone suggest if this is a server issue?
I am using Exim4.
Please guide me that how to set domainlevel auth without relay?
I send a few emails today and got a phonecall that people did not get my email. So I went into WHM and viewed "Top Email Relayers" There I saw my emails.
I am using WHM 11.11.0 cPanel 11.15.0
So what are Email Relayers?
How can I get my mails out of there so they can be send?
I have found a bunch of articles to setup Sendmail as a mail relay, but none have been successful for me or the articles are very outdated. Anyone have a 'stupid-proof' set of current instructions on how setup Sendmail Pop before SMTP? This is a CentOS 4.5 Box with Sendmail 8.14.2/8.13.1 and Dovecot. Any successful guidance would be appreciated!
View 3 Replies View RelatedOccasionally when sending an email to an international address, I receive a rejected notice:
550 5.7.1 Relaying denied. IP name forged (PTR and A records mismatch) for (serverIP)
Nothing was changed anytime recently so I'm not sure why this would happen. How would I trace this type of error? Its a legitimate outgoing mail from my server to the intl recipient.
SPF has been set since day one and unchanged.
The mail server IP has rdns set to it and has been for a long time.
i have this notification that keeps coming from the same ip at least 10 or 20 times a day since 3 days aprox. dunno what it is...
this is the message:
Quote:
subject: lfd on nameserver.domain: RELAY Alert for 200.27.xxx.xxx (domain.cl)
body:
Time: Thu Jun 5 10:56:19 2008
Type: RELAY, Remote IP - 200.27.xxx.xxx (domain.cl)
Count: 101 emails relayed
Blocked: No
Sample of the first 10 emails:
2008-06-05 10:19:56 1K4GJo-00040m-Rf <= 3eseofertas@gmail.com H=(mail.gmail.com) [200.27.xxx.xxx] P=esmtp S=1738 id=20080605102044.5323CE2BEB4A1707@gmail.com T="Especial Empresas STGO - CCTV -Evaluacion en Terreno sin Costo."
it looks like spam... is my server sending spam or im receiving it?