I have configured qmail+spamassassin. It working find but still I have 2 problem. I am receiving spam mails from my own account to my own account e.g. from=info@domain.com to info@domain.com. How can I block this spam?
View 2 Replies
One of my clients is receiving spam from his email address. SpamAssassin is not marking it as spam. I have added an SPF record for the domain, but still gets these messages. Is there any workaround for this? I don't want to activate spambox for that.
Server is cPanel + CentOS 5.2
Almost all mail adresses on my server is getting a spam mail from same mail marketing company everyday and i want to block them... Normally i just add the mail address to blacklist from "Spam Filter Settings" but this company is opening new addresses everyday and it is impossible to add all of them to blacklist so i need adding it as a regex to the blacklist...
The company i am talking about is opening mail addresses every day like below...
nrt150401@hotmail.com
nrt150402@gmail.com
nrt150403@yandex.com
nrt150404@mynet.com
As you can see all mail addresses begin with "nrt"+"6 digits of day"+"free mail provider", so right now i am using the regex below and it is already added to the blacklist but they are still able to send me... What can i do now?
I have blocked this IP 125.115.144.28
/etc/apf/apf -d 125.115.144.28
But
netstat -anp|grep tcp|awk '{print $5}'| cut -d : -f1 | sort | uniq -c | sort -n
It still showing
202 125.115.144.28
Why?
Is it supposed to blocked right away, or need some time to get blocked.
When I checked /etc/apf/deny_hosts.rules
The IP is in the file.
I am receiving around 7.000 emails from different sources with the subject “Undelivered Mail Returned to Sender” or similar.
It seems someone is using an alias to my email address to send huge amounts of spam. I have checked the mail queue in WHM and the emails are not there. I have turned on the SMTP Tweak in security center, but that doesn’t seem to work.
I have no idea if this person is using my server to send massive amounts of spam,
What I have noticed is that most emails return to msxf@mydomain.com so is there a way to block this?
I manage a website which runs on the cpanel/whm interface and was wondering if there was anything my host could do to prevent DoS attacks on the server...at the moment we are having huge DoS attacks on our website therefore taking the whole website down for quite long periods of time.
My host just seems to be manually blocking the DoS'ers IP's manually but this is just too tedious and not efficient enough.
Is there any program for example that he can install which will block andy ip which sends a certain amount of requests within a given time period?
A email account can send email, but cannot receive email, why? How do I know the answer why?
View 14 Replies View RelatedLike exceeding 60 connections per minute same IP = automatically blocked.
How do I set it up?
I didn't do any updates, but received this email from lfd:
it could be because of automatic cpanel update ? if yes how to check the last update Date/information
---------------------
Time: Wed Nov 4 01:00:04 2009 +0330
The following list of files have FAILED the md5sum comparison test. This means that the file has been changed in some way. This could be a result of an OS update or application upgrade. If the change is unexpected it should be investigated:
/usr/sbin/lvchange: FAILED
/usr/sbin/lvconvert: FAILED
/usr/sbin/lvcreate: FAILED
/usr/sbin/lvdisplay: FAILED
/usr/sbin/lvextend: FAILED
/usr/sbin/lvm: FAILED
/usr/sbin/lvmchange: FAILED
/usr/sbin/lvmdiskscan: FAILED
/usr/sbin/lvmsadc: FAILED
/usr/sbin/lvmsar: FAILED
/usr/sbin/lvreduce: FAILED
/usr/sbin/lvremove: FAILED
/usr/sbin/lvrename: FAILED
/usr/sbin/lvresize: FAILED
/usr/sbin/lvs: FAILED
/usr/sbin/lvscan: FAILED
/usr/sbin/pvchange: FAILED
/usr/sbin/pvck: FAILED
/usr/sbin/pvcreate: FAILED
/usr/sbin/pvdisplay: FAILED
/usr/sbin/pvmove: FAILED
/usr/sbin/pvremove: FAILED
/usr/sbin/pvresize: FAILED
/usr/sbin/pvs: FAILED
/usr/sbin/pvscan: FAILED
/usr/sbin/vgcfgbackup: FAILED
/usr/sbin/vgcfgrestore: FAILED
/usr/sbin/vgchange: FAILED
/usr/sbin/vgck: FAILED
/usr/sbin/vgconvert: FAILED
/usr/sbin/vgcreate: FAILED
/usr/sbin/vgdisplay: FAILED
/usr/sbin/vgexport: FAILED
/usr/sbin/vgextend: FAILED
/usr/sbin/vgimport: FAILED
/usr/sbin/vgmerge: FAILED
/usr/sbin/vgmknodes: FAILED
/usr/sbin/vgreduce: FAILED
/usr/sbin/vgremove: FAILED
/usr/sbin/vgrename: FAILED
/usr/sbin/vgs: FAILED
/usr/sbin/vgscan: FAILED
/usr/sbin/vgsplit: FAILED
/sbin/ip6tables: FAILED
/sbin/ip6tables-restore: FAILED
/sbin/ip6tables-save: FAILED
/sbin/iptables: FAILED
/sbin/iptables-restore: FAILED
/sbin/iptables-save: FAILED
/sbin/lvm: FAILED
/sbin/lvm.static: FAILED
/sbin/pvscan: FAILED
/sbin/vgchange: FAILED
/sbin/vgscan: FAILED
I've got the folowing error message:
Technical details of permanent failure:
PERM_FAILURE: SMTP Error (state 9): 550-wr-out-0506.google.com [64.233.184.239] is currently not permitted to relay
550-through this server. Perhaps you have not logged into the pop/imap server
550-in the last 30 minutes or do not have SMTP Authentication turned on in your
550 email client.
I am using Exim.
I'm having difficulties with a whm running on centos dedicated server. The problem is that we receive too much of spam and junk emails. by too much I mean 2000 bulks per week. It's killing us.
how I can stop it.
I have spamassassin configured its working 90% but still I am receiving mails from my ID only. Like I have info@domain.com so I am receiving mail from info@domain.com to info@domain.com.
View 7 Replies View RelatedI have a customer who has an iMac using Entourage and is unable to receive any emails, they are able to send emails, the settings that are used are:
Outgoing mail.customersite.com port 26
Incoming mail.customersite.com port 110
Emails that are sent arrive without a problem, sorry I am not familiar with iMac’s, so is there anything else that needs to be done?
my server is linux and plesk.
SMTP Server (QMail) is stoped in PLESK >> Server >> Service Managment and I cannot start from there.
my customers cannot send/receive their emails, I contacted with our data center to solve this problem for me and they said because the CalmAV was disabled we have this problem, we start the CalamAV but we have this problem yet!
we can sent mail from server but we don't receive any mail.
some of site at our servers receive many bounce email seems spamers use those domains as a sender or use sendmail php function in some scripts at accounts
View 3 Replies View RelatedI am using cPanel and Exim mail server and can't receive emails from outside domains.
checkdns.net
soccergaming.com
Getting a 550 error...
I am a reseller with Hostforweb.com and have a minor problem that is turning into a major problem.
A number of email addresses within my clients can't receive server generated activation or verification emails, and therefore, cannot join many professional sites. It seems to be problematic with php generated email. The last two sites that I have tried to join are:
Drupal.org and Joomla.org.
HostforWeb keeps saying that is the fault of the webserver that I am trying to activate membership on. I am getting the royal run around while I am losing paying accounts.
Any body with this problem on HostforWeb.com or any other web host?
Also, I can receive the verification email on other mail addresses - both POP and IMAP.
I'm trying to use spamfilter to block mail from specific address, adding this e-mail to spamfilter in mail account settings, but it doesn't work. In logs I see:
spamc[13430]: skipped message, greater than max message size (256000 bytes).
my root@myserver.com
can send email, ( I tried from my webmail)
it does not accept emails
I am unable to send or receive email from the server in Mail Queue Manager it shows this when clicking deliver now
Code:
Delivery attempt for Message ID 1ITmWS-0001u4-QJ
Message 1ITmWS-0001u4-QJ is no longer frozen
delivering 1ITmWS-0001u4-QJ
LOG: MAIN
lowest numbered MX record points to local host: domain.com
LOG: MAIN
== myemail@domain.com R=lookuphost defer (-1): lowest numbered MX record points to local host
LOG: MAIN
Frozen
Return to Mail Queue
I have a regular visitor from 1999521.videos-for-your-business.com/ and I am aware this is spam from semalt.com, the trouble is I have tried blocking this but it keeps coming back the number 1999521 changes frequently
I have the following in my htaccess file
## STOP REFERRER SPAM
RewriteCond %{HTTP_REFERER} semalt.com [NC,OR]
RewriteCond %{HTTP_REFERER} best-seo-offer.com [NC,OR]
RewriteCond %{HTTP_REFERER} videos-for-your-business.com [NC,OR]
RewriteCond %{HTTP_REFERER} semaltmedia.com [NC,OR]
RewriteCond %{HTTP_REFERER} best-seo-solution.com
RewriteRule .* - [F]
The following setup has been working fine for several months, I came to check the site today and I'm unable to connect. Email and site are split (email is with googlemail).
@NS ns1.domainregistrar.com
@NS ns2.domainregistrar.com
@MX10 ASPMX.L.GOOGLE.COM 604800
@MX20 ALT1.ASPMX.L.GOOGLE.COM604800
@MX20 ALT2.ASPMX.L.GOOGLE.COM604800
@MX30 ASPMX2.GOOGLEMAIL.COM604800
@MX30 ASPMX3.GOOGLEMAIL.COM604800
@MX40 ASPMX4.GOOGLEMAIL.COM604800
@MX40 ASPMX5.GOOGLEMAIL.COM604800
webmailCNAME ghs.google.com3600
@A **serverip**3600
ftpA **serverip**3600
wwwA **serverip**3600
*A **serverip**3600
I can send and receive, but no emails arrive, probably because the registrar has a resolve issue?
Site is also down.
Here is what happened:
We have been running our web/ftp/application/mail server for about 4 years, and running flawlessly. This week one of the computers in the network was infected with a virus that was sending spam like crazy. We got blacklisted, as per this site mxtoolbox.com. Our domain is affordablerto.net. Since then we have isolated the problem, klilled the virus and are no longer blacklisted. But we are not able to send or receive any emails now. I wrote mxtoolbox and there reply was basicly "We can get you up and running if you pay us". I called our ISP and they stated that the ports(25) are open. When I do an smtp diagnostic from mxtoolbox I get the response that Argument 'Length' must be greater or equal to zero.
When I go to dnsreport and input our mail server (mail.affordablerto.net) I get ERROR:
The parent servers say that the domain mail.affordablerto.net does not have any NS records (although they may have some other information on that zone).
When I put in our mail server under mail test I get this Getting MX record for mail.affordablerto.net (from local DNS server, may be cached)... There is no MX record for mail.affordablerto.net! That's bad. Checking for an A record... Got it!
When I put in our domain I get this...well I can not put a link in yet - the software here says I need to take 5 posts before I can link anything. Go ahead and try it yourself.
I am not sure what most of this information means. I am in contact with our DNS provider and they keep on trying to sell me some solution. So does mxtoolbox.
I don't know what to do.
All status of pop and exim server are OK, no problem. but couldn't receive and send email, no error message.
View 9 Replies View Related
