Share

Question

Hi Everyone,

I need some help. I believe there is someone put a spam email script on my server, but I am not where that is. Need some help to figure out where it is.

Mail server: postfix
Server: Ubuntu HHVM Nginx

Any help would be appreciated!

Answer 1

narbeh November 5, 2017

Try to use tcpdump command to capture the traffic especially the mail server ports like 110 - 25 .... (depends on your service you provide) then analyze the captured traffic and block the inappropriate sources with iptables.

Examples of commands just to get started:

tcpdump -nty any port 25

Block the traffic from specific source

iptables -t filter -s 1.2.3.4 -j DROP

Reply

jsdglwq November 9, 2017

Thank you so much! Let me try it out and let you if that is fixed or not

Answer 2

jsdglwq November 9, 2017

Thank you so much! Let me try it out and let you if that is fixed or not

Postfix Spam mail script

Leave a Comment

Share

Share your Question

Postfix Spam mail script

Leave a Comment

Related

question

SendGrid EMail Api: 500 Server Error

question

Client host rejected: cannot find your reverse hostname

question

Installing IceWarp Email server

question

SMTP to Comcast mail servers

Almost there!