How To Get My Server From Re-appearing On Blacklist
May 17, 2008
I can only assume that I have a virus or adware on my server but Acunett says that there is nothing. I double checked all of my email sending php scripts and all of them are secure and not sending any spam. However in my mail queue in WHM I see spam emails and my server's IP keeps getting relisted on the blacklist located at:
[url]
AM I THE ONLY PERSON IN THE WORLD WITH THIS PROBLEM? This is getting frustrating I have probably spent over 200 hours trying to get this resolved but it seems like no one knows what to do. This is hurting my business since I have tons of emails stacked in my queue and being blocked by email providers due to that blacklist. I remove my server's IP successfully and the next day it is blacklisted again. If anything how can I check my linux server for viruses?
View 6 Replies
ADVERTISEMENT
Feb 9, 2015
When i add a new domain to plesk, it puts in the correct Name servers in, but it also adds the computers name into the list and when getting it checked out from intodns.com it flags it saying missing Name Servers.
Into DNS : [URL] ....
I have also attached a screenshot showing what DNS Manager is showing.
View 19 Replies
View Related
Nov 25, 2008
What do you do if your server is on a blacklist?
This just happened to my server about a week ago. Folks complaining they cannot get their signup emails etc, me not getting server notifications etc etc. Sure enough, showing up on a blacklist, one that checks the /24 block. So I am penalized for somebody else in block spamming.
I tried to setup godaddy email on the server, it works but not for internal emails FROM server (ie using php script to notify somebody or me). I added the mx records to the WHM and it does not work, I tried to add site to /etc/remotedomains and remove from the remotedomains but that does not work.
somebody mentioned using pears SMTP mail method, but then would have to change all the code, ugh.
how can I change the main servers relay so ALLLLL email will be relayed through the godaddy servers instead of the default it is using. i am running Exim.
View 7 Replies
View Related
May 11, 2007
When I tried the Spam DataBase Lookup on dnsstuff.com I saw in results something that:
[url]
How can I fix this issue?
My server wasn't hacked. I check logs every day and I didn't say nothing disturbing.
View 4 Replies
View Related
Aug 13, 2008
I just lost access to my site, but wannabrowser & siteuptime, etc. all said it was up!
I ran ipconfig /flushdns and everything.
Finally, I unplugged my wireless & router and waited. Plugged it back in, everything worked (I had a new IP)
The only suggestion I can come up with is that my own security protection filtered me! How can I view the nodos blacklist to see if this is the case?
I already checked iptables -L and my IP (and range) did not show.
View 4 Replies
View Related
Dec 2, 2008
What scripts/tools or configurations on a CPanel/WHM (Centos) server can you make to prevent spam from getting sent out by "clients" you may be hosting or just spam in general.
As, in the hosting industry, you are always going to have a client or two successfully send out spam, as some spam may not look like spam, but if you do not follow all the guildlines, I know regular newsletters can be consider spam.
View 5 Replies
View Related
May 18, 2015
I set multiple mail servers (eg media-26.com) in the black list of server-wide mail settings but i still get spams from these mail servers..does it work properly?
View 8 Replies
View Related
Nov 9, 2009
Why would .bash_history, .cups and .fontconfig would have suddenly shown up among the contents of a specific directory?
View 4 Replies
View Related
May 10, 2007
I've recently switched hosts & i've remade the website. Now it is either showing the old content, not showing at all or very rarely showing the new content.
View 4 Replies
View Related
Jun 11, 2008
what network device would suit our needs (and whether there is something like what we need).
The device should meet following criteria:
-it should appear as one device only: a L2 switch is not an option as the device has to announce only one MAC address on the uplink port
-plug&play: a gigabit L3 switch is not an option because we would have to change the default gateway of the already configured servers to the L3 switch's IP
-gigabit ports
Is there any reliable device that could be used for this purpose?
View 4 Replies
View Related
Nov 24, 2014
We're working with a new Plesk 12 server, I have migrated a bunch of sites from an old server, and all SSL enabled sites and certs have come across correctly, however if I add a new site, and SSL cert, the cert is not selectable at domain level, and is not being served at all.
My process is:
At settings level - create new CSR and enter certificate received from provider.
Then select this cert on the IP address management screen.
This has always worked, and presumably still should. But at domain level, Plesk is only allowing me to select the default cert. And even though I have linked the cert to the IP, it is not being served to browsers.
View 2 Replies
View Related
Mar 24, 2007
I had a short-lived episode where one of my customers was spamming. I was able to shut it down quickly, but not quick enough to avoid getting SMTP blacklisted by RCN. The response from their mail servers is:
SMTP error from remote mail server after initial connection:
host mx.lnh.mail.rcn.net [207.172.157.50]: 554 mx05.lnh.mail.rcn.net
No information there on what blacklist system they use, or how to get de-listed. Nothing that I can find on RCN's web site. Mail to postmaster is ignored. Mail to support is ignored. Can't get past 1st-level support over the phone. I'm stuck. Blacklisted and can't get off.
Anyone dealt with this with RCN before?
View 4 Replies
View Related
May 8, 2009
I have an issue with o2 - some of their mailservers have blacklisted IPs and hence mail doesn't get delivered to recipients whose ISPs subscribe to the specific blacklists.
Questions:
1 If mail is not delivered, will I ALWAYS know about it?
I've had bounce notifications from one specific ISP, but I'm wondering whether in other cases the mail will just not get through and I'll not know about it.
2 I'm aware of problems with two specific o2 IPs:
82.132.130.151
82.132.130.169
View 3 Replies
View Related
May 25, 2009
I have exim mailserver (cpanel based),and when i send mails to some domains i have got the following error
550 Service unavailable; Client host [xxx.xxx.xxx.xxx] blocked using 88.blacklist.zap; Mail From IP Banned To request removal from this list please forward this message to delist@frontbridge.com
How can i solve this issue ? How can i avoid my IP from listing in 88.blacklist.zap?
View 1 Replies
View Related
May 21, 2008
We've had a couple cases of fraud recently, and have blacklisted the IPs (which turned out to be proxy servers) of the perpetrators. It got me thinking... has anybody put together any kind of IP blacklist for fraudulent orders? Something like a DNSBL for spam, but focused on IPs that fraudsters use?
View 5 Replies
View Related
Jul 11, 2007
if there should be a "provider blacklist".
There are some companies whose reviews are mostly bad, and its not just one but many.
Some examples :
- SurfSpeedy
- BuyAVPS
It should steer new users from these companies as it will leave them negative impressions of an otherwise good sector of the hosting market.
Of course, these should be backed up by evidence.
View 14 Replies
View Related
Apr 10, 2007
Can I ask what is the website where I can check if a server IP has been blacklisted?
View 2 Replies
View Related
Nov 3, 2009
I am a reseller for SkyNetHosting.Net for about 3 months now and yes we are new in hosting business. For this pass 2 months I'm having issues with my host server firewall. Every time I get myself blacklist I have to summit a ticket asking for my IP to be whitelist. Its fine with me but I don't think my clients are happy with this as we are getting almost 90% non-renewal rate..
They keep saying its my fault.. Ok, I can take that.. But how do I explain to my clients and most importantly my client's visitors??
Is there anything on the firewall settings that they should tweak to minimize this?
I never had any problem when I was at hostgator...
My user experience with you guys so far has been excellent, especially the support department and if I were to single out your tech support employee, it has to be Nathan. Thumbs up for his fast and reliable support.
However I have one major complain.. And that is your firewall issue as I keeps getting block/blacklist even for a mere moment of connecting to Luna Server for less than 10sec. Yes, you heard me.. just 10sec after i login to the internet and browse my sites there is a high possibility of my IP getting blacklist.
We're not a pure web hosting company, we received more web design projects where by they also host their website on our server. So you see, we maintain most of our clients website and regular FTP to multiple websites are required.
Here are the list of things I would do 1st thing when I login to internet, including my employee and my business partner. So if we multiply the below by 4 .. We will get blacklist for sure, most of the times!!
1. Login WHMCS
2. Login Livezilla Chat Support
3. Login webmail to check emails
4. FTP Updates on clients sites
I hope you guys can re-look into the firewall sensitivity settings where by it reduce or better still does not effect us business wise.
My Host reply to ticket
Hello,
I recommend to change ALL your FTP/cPanel passwords at once and if you are saving them on browser, FTP clients not to do it anymore. If possible try to login from a deferent clean laptop/PC and see if you get the same problem.
Kind Regards,
Jessica S.
---------------------------------------------
Hello,
Customers who save their FTP login credentials in FTP softwares like FileZilla, Cute-FTP, WS_FTP-Pro, Dreamweaver or Frontpage are prone to malicious scripts injections from their PC's using their legit cPanel login details via FTP and the owner of the domain/account were not even aware of it. Your login credentials are leaked to the hackers once a Trojan or Virus gets installed on your Windows Machine.
The easiest way to save your login credentials would be, to save them in a text document without saving the Domain name or Login Host information in the same document. To be absolutely sure your FTP account won’t get compromised, we highly recommend you choose a strong password which contains a combination of upper and lower case letters, numbers and special characters such as $?£;: while adding a new FTP login name from your cpanel control panel. If you manage multiple websites may not like this change, but losing your data and then losing your rankings in Search Engines will create more trouble.
Few reads about this:
http://www.lexiconn.com/blog/2009/08...he-rise-again/
http://www.sitepoint.com/forums/show....php?p=4380314
http://forums.majorgeeks.com/showthread.php?t=196915
Thank you for your time.
Best Regards,
SkyNetHosting.Net Inc.
Honestly I don't think this issue can be resolve on the user end as we are currently facing a monthly non-renewal rate of 90% from our clients. If this goes on we would end up losing our reputation and most importantly our business.
Yes, I can tell them the same message that your tech support replied to me. But my clients do not understand and they would rather find a host that are less complicated "firewall sensitive". Is there somehow you can recalibrate the firewall sensitivity, so we all can have our peace?
My client on chat support
Hi Chester.
My Cpanel username is 'justin'.
This is with regards to my problem with the IP whitelist.
I need a no-nonsense answer.
I have visitors from the US complaining that they cannot view my site.
I cannot possibly be whitelisting everyone.
So, is it possible to tweak the filtering/firewall settings?
If it is not possible, I would like to exercise my money-back guarantee and close my account.
I would like a day to download my files and databases if that is possible.
I can pay a pro-rated amount.
View 0 Replies
View Related
Jan 19, 2008
I'd like to keep an IP blacklist, and have Apache enforce it. Because I want it to apply server-wide, I want to use it in httpd.conf, not .htaccess.
Rather than constantly editing httpd.conf by hand, I'd like to keep a file of IPs, and have Apache read that file and use it as the argument for a "deny from..." directive. Try as I might, I cannot find any documentation, nor any examples, of this usage. Is this something that's possible?
(It turns out that Apache doesn't honor /etc/hosts.deny, hence this question.)
View 8 Replies
View Related
Dec 16, 2008
As of 12-15-08 our spam system has learned and blocked these addresses. Check attachment for your records help stop spam at the source.
View 9 Replies
View Related
Jan 26, 2007
Wondering if anyone knows of an email DNSBL that are have a real time reporting tool which directly feeds the DNSBL?
I have been using Spamcop for reporting in hopes I might be able to get some IP's listed. However so far I have not seen any IP's listed until many hours or days after they are reported (possibly going through a validation process?).
Wondering if anyone knows a more pro-active DNSBL that is fed directly by reporting and administrators?
View 2 Replies
View Related
Apr 29, 2009
A Wordpress install on one of my domains was compromised a few months ago, and there was a 4-hour window in which the site contained an iframe injection that lead to a malware site.
The problem was corrected, and Google stopped flagging the site as malicious within a few hours after the fix. However, every once in a while I still hear of people having problems accessing the site, all of them I think from within large corporate networks.
Are there a few common list providers that these corporate networks are likely to be subscribing to? Is there a way I can submit the domain for reevaluation? If not, how long would you think a domain would have to be clean in order to repair its reputation on these lists?
View 3 Replies
View Related
Jul 29, 2014
Unable to add more than 100 emails on balck list [solved]
i am unable to add to add more emails on blacklist of server spam control
see the print
View 1 Replies
View Related
Apr 3, 2015
Almost all mail adresses on my server is getting a spam mail from same mail marketing company everyday and i want to block them... Normally i just add the mail address to blacklist from "Spam Filter Settings" but this company is opening new addresses everyday and it is impossible to add all of them to blacklist so i need adding it as a regex to the blacklist...
The company i am talking about is opening mail addresses every day like below...
nrt150401@hotmail.com
nrt150402@gmail.com
nrt150403@yandex.com
nrt150404@mynet.com
As you can see all mail addresses begin with "nrt"+"6 digits of day"+"free mail provider", so right now i am using the regex below and it is already added to the blacklist but they are still able to send me... What can i do now?
View 3 Replies
View Related
May 8, 2007
I've got a VPS which is serving as the main server for a number of sites. Web Server, SSH Server, and Mail Server.
What I've got running:
Apache2, PHP5, MySQL5, Dovecot, Postfix
One of the sites is a growing forum with a MASSIVE photo album. This is the site where I notice the most slowness.
Changing the server software is not an option - Only optimization.
Quote:
Originally Posted by httpd.conf
ServerTokens OS
ServerRoot "/etc/httpd"
PidFile run/httpd.pid
Timeout 300
KeepAlive Off
MaxKeepAliveRequests 100
KeepAliveTimeout 5
<IfModule prefork.c>
StartServers 8
MinSpareServers 8
MaxSpareServers 13
ServerLimit 256
MaxClients 256
MaxRequestsPerChild 50
</IfModule>
<IfModule worker.c>
StartServers 2
MaxClients 150
MinSpareThreads 25
MaxSpareThreads 75
ThreadsPerChild 25
MaxRequestsPerChild 0
</IfModule>
Listen 80
LoadModule auth_basic_module modules/mod_auth_basic.so
LoadModule auth_digest_module modules/mod_auth_digest.so
LoadModule authn_file_module modules/mod_authn_file.so
LoadModule authn_alias_module modules/mod_authn_alias.so
LoadModule authn_anon_module modules/mod_authn_anon.so
LoadModule authn_dbm_module modules/mod_authn_dbm.so
LoadModule authn_default_module modules/mod_authn_default.so
LoadModule authz_host_module modules/mod_authz_host.so
LoadModule authz_user_module modules/mod_authz_user.so
LoadModule authz_owner_module modules/mod_authz_owner.so
LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
LoadModule authz_dbm_module modules/mod_authz_dbm.so
LoadModule authz_default_module modules/mod_authz_default.so
LoadModule ldap_module modules/mod_ldap.so
LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
LoadModule include_module modules/mod_include.so
LoadModule log_config_module modules/mod_log_config.so
LoadModule logio_module modules/mod_logio.so
LoadModule env_module modules/mod_env.so
LoadModule ext_filter_module modules/mod_ext_filter.so
LoadModule mime_magic_module modules/mod_mime_magic.so
LoadModule expires_module modules/mod_expires.so
LoadModule deflate_module modules/mod_deflate.so
LoadModule headers_module modules/mod_headers.so
LoadModule usertrack_module modules/mod_usertrack.so
LoadModule setenvif_module modules/mod_setenvif.so
LoadModule mime_module modules/mod_mime.so
LoadModule dav_module modules/mod_dav.so
LoadModule status_module modules/mod_status.so
LoadModule autoindex_module modules/mod_autoindex.so
LoadModule info_module modules/mod_info.so
LoadModule dav_fs_module modules/mod_dav_fs.so
LoadModule vhost_alias_module modules/mod_vhost_alias.so
LoadModule negotiation_module modules/mod_negotiation.so
LoadModule dir_module modules/mod_dir.so
LoadModule actions_module modules/mod_actions.so
LoadModule speling_module modules/mod_speling.so
LoadModule userdir_module modules/mod_userdir.so
LoadModule alias_module modules/mod_alias.so
LoadModule rewrite_module modules/mod_rewrite.so
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
LoadModule proxy_http_module modules/mod_proxy_http.so
LoadModule proxy_connect_module modules/mod_proxy_connect.so
LoadModule cache_module modules/mod_cache.so
LoadModule suexec_module modules/mod_suexec.so
LoadModule disk_cache_module modules/mod_disk_cache.so
LoadModule file_cache_module modules/mod_file_cache.so
LoadModule mem_cache_module modules/mod_mem_cache.so
LoadModule cgi_module modules/mod_cgi.so
Include conf.d/*.conf
User apache
Group apache
Quote:
Originally Posted by my.cnf
[mysqld]
datadir=/var/lib/mysql
socket=/var/lib/mysql/mysql.sock
# Default to using old password format for compatibility with mysql 3.x
# clients (those using the mysqlclient10 compatibility package).
old_passwords=1
[mysql.server]
user=mysql
basedir=/var/lib
[mysqld_safe]
log-error=/var/log/mysqld.log
pid-file=/var/run/mysqld/mysqld.pid
View 8 Replies
View Related