Lotus Domino 7  Inbound mail server

Posted on 2014-01-21
Last Modified: 2014-01-31
I have been getting a lot of spammers using my
Domino 7 mail server.

I am unable to tell what user they are logging in as.

I have a fear that they are login  with out a password.

How can I check to be sure the server is only allowing
Authenticated users to use the system.
Question by:yahoolane
  • 3
  • 2
LVL 46

Accepted Solution

Sjef Bosman earned 500 total points
ID: 39798411
If your server is a so-called open relay, they don't even have to log in. You can test it using

You probably have to close the open relay, by reconfiguring the Domino server (which should have been done years ago, really...). Read this page from the Admin Help database or search that database for "Preventing unauthorized SMTP hosts from using Domino as a relay".

PS And may I suggest you upgrade your server, Domino R9.0.1 is available already!

Author Comment

ID: 39798452
Well seems I was wrong
I ran your test

      SMTP Open Relay      OK - Not an open relay.

and I am not an open relay

But I guess it is a poor username password combo.

I captured some network traffice hope I can find it.

Any other suggestions.
LVL 46

Expert Comment

by:Sjef Bosman
ID: 39798761
How do you know they use your server? Can you show us some extracts from your server's log.nsf database, especially from the Miscellaneous and Mail sections?

If they use POP3 or IMAP, you can see them in domlog.nsf, if you activated http logging in that database.

Author Comment

ID: 39798829
I opened a new question after looking at the firewall dumps
LVL 46

Expert Comment

by:Sjef Bosman
ID: 39799353
Sorry, but you cannot close a question like that, and with a "C". Why didn't you supply us the information I asked for? It'll help you (ans us) to investigate the problem a lot further.

I'm going to ask for this question to be reopened.

Featured Post

Too many email signature changes to deal with?

Are you constantly being asked to update your organization's email signatures? Do they take up too much of your time? Wouldn't you love to be able to manage all signatures from one central location, easily design them and deploy them quickly to users. Well, you can!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Nearly six years ago I was hired by a company to be their senior server engineer. One of my first projects was to implement Exchange Server 2007 on a Windows Server 2008 Single Copy Cluster for high availability. That was the easy part; read on to l…
Granting full access permission allows users to access mailboxes present in their database. By giving full access permission one can open and read the content of any mailbox but cannot send emails from that mailbox.
Familiarize people with the process of utilizing SQL Server views from within Microsoft Access. Microsoft Access is a very powerful client/server development tool. One of the SQL Server objects that you can interact with from within Microsoft Access…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now