Lotus Domino 7  Inbound mail server

Posted on 2014-01-21
Medium Priority
Last Modified: 2014-01-31
I have been getting a lot of spammers using my
Domino 7 mail server.

I am unable to tell what user they are logging in as.

I have a fear that they are login  with out a password.

How can I check to be sure the server is only allowing
Authenticated users to use the system.
Question by:yahoolane
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
LVL 46

Accepted Solution

Sjef Bosman earned 2000 total points
ID: 39798411
If your server is a so-called open relay, they don't even have to log in. You can test it using http://mxtoolbox.com/diagnostic.aspx

You probably have to close the open relay, by reconfiguring the Domino server (which should have been done years ago, really...). Read this page from the Admin Help database or search that database for "Preventing unauthorized SMTP hosts from using Domino as a relay".

PS And may I suggest you upgrade your server, Domino R9.0.1 is available already!

Author Comment

ID: 39798452
Well seems I was wrong
I ran your test

      SMTP Open Relay      OK - Not an open relay.

and I am not an open relay

But I guess it is a poor username password combo.

I captured some network traffice hope I can find it.

Any other suggestions.
LVL 46

Expert Comment

by:Sjef Bosman
ID: 39798761
How do you know they use your server? Can you show us some extracts from your server's log.nsf database, especially from the Miscellaneous and Mail sections?

If they use POP3 or IMAP, you can see them in domlog.nsf, if you activated http logging in that database.

Author Comment

ID: 39798829
I opened a new question after looking at the firewall dumps
LVL 46

Expert Comment

by:Sjef Bosman
ID: 39799353
Sorry, but you cannot close a question like that, and with a "C". Why didn't you supply us the information I asked for? It'll help you (ans us) to investigate the problem a lot further.

I'm going to ask for this question to be reopened.

Featured Post

NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Email signatures have numerous marketing benefits. Here are 8 top reasons to turn your email signature into a marketing channel.
As cyber crime continues to grow in both numbers and sophistication, a troubling trend of optimization has emerged over the last year.
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question