Question

Postfix Spam mail script

  • Posted October 26, 2017
  • Email

Hi Everyone,

I need some help. I believe there is someone put a spam email script on my server, but I am not where that is. Need some help to figure out where it is.

Mail server: postfix Server: Ubuntu HHVM Nginx

Any help would be appreciated!

Subscribe
Share

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Try to use tcpdump command to capture the traffic especially the mail server ports like 110 - 25 … (depends on your service you provide) then analyze the captured traffic and block the inappropriate sources with iptables.

Examples of commands just to get started:

tcpdump -nty any port 25

Block the traffic from specific source

iptables -t filter -s 1.2.3.4 -j DROP