I own a hosting server, running plesk on Linux environment, which has about 57 UK domains hosted on it, and lately the servers mail failure box had been over filled with bad email addresses containing spam.
I think the servers being used for spam, I have checked all the contact forms but every domain contact form contains a Session, PHP generated captcha image.
Anyway my question is
Plesk displays this information
failure notice firstname.lastname@example.org July 17, 2008 10:13 AM7 day(s) 00:23:3411,39 KB
And when you click on the link it displays
Received: (qmail 6822 invoked for bounce); 17 Jul 2008 10:13:09 +0100
Date: 17 Jul 2008 10:13:09 +0100
Subject: failure notice
This information is useless to me
Is their a way to Add a From IP address and exploited domain
That way I know which client has the vulnerability and I can the look for ways to prevent spam
So im pretty much asking how can I find out which domain these emails are coming from