Solved

spamming  on Hosted svrs?

Posted on 2016-10-19
6
116 Views
Last Modified: 2016-10-21
Looking for other way to look at spamming issue on a vps hosted server we DO NOT use as mail server.
We simply us it to host sites we build/maintain, and DNS manager that points MX records to our in-house mail servers.

Seems in that VPS hosted web server there are emails in the queue, cleared once already, passwords changed for user it looked like on the VPS account that was sending the mail.  But again queue is filled up.  I confirmed the mail is not coming from our internal emails servers via my FW and email server logs analysis and monitoring.

What can I possibly be missing as the VPS tech support is email only and nothings seems to be being done.  Thank you.
0
Comment
Question by:dee30
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 81

Expert Comment

by:David Johnson, CD, MVP
ID: 41850895
you say it has mail in the queue.. So you have the smtp components installed on the server and the web sites can send mail?
0
 
LVL 28

Accepted Solution

by:
Dr. Klahn earned 500 total points
ID: 41851268
First thing, immediately change all passwords on that system and enable two-factor authentication if possible.

Then.  Should that system be sending email at all?  If not, ...

Is the offending system linux or Windows? If it's linux, disable mail / postfix / dovecot and block outgoing port 25 using iptables.

Long term fix:  Reload the system from known clean distribution kits and generate all new randomly generated passwords of at least 16 length.
0
 

Author Comment

by:dee30
ID: 41853070
no mail should be sending.
it's windows and joomla use cpanel for joomla access to upload php html files etc.
0
Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

 
LVL 28

Expert Comment

by:Dr. Klahn
ID: 41853071
Then the email components should be disabled or removed, and the problem will be solved.
0
 

Author Comment

by:dee30
ID: 41853128
Yeah trying to find that stop, disable, uninstall option still..  also just discovered the de dedicated IP has one pretty damn close on same /24 network that has dsn listed as same as the hosting company we have our vps from and both, unrelated the other ip to us, has a poor email rep.  Hmmmm!!!???:
0
 

Author Comment

by:dee30
ID: 41854122
Thank you.
0

Featured Post

Guide to Performance: Optimization & Monitoring

Nowadays, monitoring is a mixture of tools, systems, and codes—making it a very complex process. And with this complexity, comes variables for failure. Get DZone’s new Guide to Performance to learn how to proactively find these variables and solve them before a disruption occurs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question