troubleshooting Question

Spam Prevention, Linux Server with plesk how to locate the exploited domain

Avatar of silveuk
silveuk asked on
VulnerabilitiesLinux NetworkingAntiSpam
4 Comments1 Solution729 ViewsLast Modified:
I own a hosting server, running plesk on Linux environment, which has about 57 UK domains hosted on it, and lately the servers mail failure box had been over filled with bad email addresses containing spam.
I think the servers being used for spam, I have checked all the contact forms but every domain contact form contains a Session, PHP generated captcha image.
Anyway my question is

Plesk displays this information

 failure notice mungo@searchhound.com July 17, 2008 10:13 AM7 day(s) 00:23:3411,39 KB

And when you click on the link it displays

Received: (qmail 6822 invoked for bounce); 17 Jul 2008 10:13:09 +0100
Date: 17 Jul 2008 10:13:09 +0100
From: MAILER-DAEMON@p75197581.pureserver.info
To: mungo@searchhound.com
Subject: failure notice

This information is useless to me

Is their a way to Add a From IP address and exploited domain

That way I know which client has the vulnerability and I can the look for ways to prevent spam

So im pretty much asking how can I find out which domain these emails are coming from
ASKER CERTIFIED SOLUTION
Join our community to see this answer!
Unlock 1 Answer and 4 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 4 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros