Date: Tue, 14 Apr 2015 01:28:44 -0400 From: Alejandro Imass <aimass@yabarana.com> To: David Banning <david+dated+1429419205.67aac2@skytracker.ca> Cc: "questions@freebsd.org" <questions@freebsd.org> Subject: Re: finding a spammer relaying through sendmail Message-ID: <CAHieY7SOjo=KmEDWgZ1ge78YZxwvRZoTgAndUUFk5vD9yEnACg@mail.gmail.com> In-Reply-To: <20150414045323.GA12656@skytracker.ca> References: <20150414045323.GA12656@skytracker.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
I had a similar problem and discovered it was an old version of OSCommerce. Maybe you have some similar application that is vulnerable to spam robot injection. In the OSC case aforementioned it somehow allowed to install spam robots through a weakness in the image upload code. On Tuesday, April 14, 2015, David Banning < david+dated+1429419205.67aac2@skytracker.ca> wrote: > I have around 40 email users on my system, and one seems have had their > login info stolen. Is there a way to determine which user is being given > authorization to relay through sendmail? I have increased sendmail logging > to 15 but the sender is flagged only as an email address, one unknwon to > me. > > Any pointers would be helpful. > _______________________________________________ > freebsd-questions@freebsd.org <javascript:;> mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org <javascript:;>" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAHieY7SOjo=KmEDWgZ1ge78YZxwvRZoTgAndUUFk5vD9yEnACg>