Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17


Domino Email server has been become spam server

Posted on 2013-02-01
Medium Priority
Last Modified: 2013-12-18
I have get feed back from my client said that  ,they can not receive and send the email ,so i remote to their mail server have lot of NDR until the mailbox congest .I also found that many unknown internet user in the server come from same IP so ,i immediate add this ip to the entry of the denied  host in smtp control.

After i add this entry i can see the server is denied this ip already but i still can see this server very busy then i check services i also found  8 smtp task are busy with that IP ,so i stop those task ,then the server become normal.

Below is my question
1.Why my email server allow other domain user to relay ? how can i fix this

Below is the statement my senior found out and send to client

xxxxx password has been compromised, that's the reason of your mail server had become a mail spam server that degraded the performance and filled up with NDR. I have changed Karen's Internet password for the time being, thus her Traveler account has been locked out. You have to ask her to change her password to a more secured one. Also inform other users don't use easy to guess password.

1.How to know which user have been compromised ?
Question by:warriorsTeah
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 15

Accepted Solution

akhafaf earned 2000 total points
ID: 38846276
Hi there

Firstly,, check the reputation of the SPAM IP which has been sending emails to you .

Secondly, check your IP address reputation  ( In order to check if your mail domain has become with bad reputation and a SPAMer then you can clear it )

Finally, you can black list this IP using the following steps ( check the snaps )

Configuration Document ..
Restrictions and Controls
SMTP Inbound Controls
IP Blocking
And I mentioned in your Other Question please refer to it for the Mail.box handeling .
Best Wishes

Author Comment

ID: 38846294
Hi akhafaf ,

You are really become my mentor ...ha ha ,because always you are the first person participate in my question ...thank you ,below is my question

1.Why need to check the reputation IP sending to me ?
2.If i has been black list ,report to the postmaster and ask them to remove or we can do it our self and is chargeable ?
3.You never advice me why my superior can know who are the internet account has been compromised ?
LVL 46

Expert Comment

by:Sjef Bosman
ID: 38846450
Usually nothing is compromised, but someone left a door open. Check whether the server is an open relay server, i.e. that outside mail can be relayed to outside addresses.

Try: http://www.abuse.net/relay.html
LVL 15

Expert Comment

ID: 38846512
1.Why need to check the reputation IP sending to me ?

- Just to have any Idea about the reputation of this sender

2.If i has been black list ,report to the postmaster and ask them to remove or we can do it our self and is chargeable ?
- If you have been black listed or have a " high risk " reputation you have to contacts these URLs then ask them to correct this status .

3.You never advice me why my superior can know who are the internet account has been compromised ? In fact, what I was trying to do it to block this IP first of all , make sure that you are not classified as a SPAMer or a Spoofer etc. then we can check any other things.

Expert Comment

ID: 38875130
Pls open messaging configuration document then select Configuration Setting >  router/smtp > Restrictions & control > smtp inbound Controls

check on perform anti relay check for authenticated users. this will help solving your issue.

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolve Outlook connectivity issues after moving mailbox to new Exchange 2016 server
Find out what Office 365 Transport Rules are, how they work and their limitations managing Office 365 signatures.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
Many of my clients call in with monstrous Gmail overloading issues with Outlook. A quick tip is to turn off the All Mail and Important folders from synching. Here is a quick video I made to show you how to turn off these and other folders in Gmail s…
Suggested Courses

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question