Knowledgebase
Knowledgebase
Portal Home > Knowledgebase > Articles Database > spam mail from unknown server
spam mail from unknown server
Posted by seachen, 08-15-2009, 02:30 AM recently my dedicated server always got spam mail and caused server overload. may i know how do i check who is the mail sender? beside that, i have found out that the mail sender address is from info@cbn.com But inside my server, I not found this user.
Posted by InstaCarma_Support, 08-15-2009, 03:12 AM What do you use for mail server? If it is Exim then the following would give you a headstart : Who is having large number of emails? exim -bp | exiqsumm To check message header exim -Mvh messageid To check message content exim -Mvb messageid Removing Bad Mail for i in `exiqgrep -i -f nobody`; do exim -Mrm $i; done >> Removes Nobody Mail for i in `exiqgrep -i -o 259200`; do exim -Mrm $i; done >> Removes Mail older than 3 Days for i in `exiqgrep -i -f ^<>$`; do exim -Mrm $i; done >> Removes Mail with weird Characters (Spam) Delete mails from a certain domain for i in `exiqgrep -i -f domain.com`; do exim -Mrm $i; done Delete mails to a certain domain for i in `exiqgrep -i -r domain.com`; do exim -Mrm $i; done Flush the entire Mail queue for i in `exiqgrep -i -f `; do exim -Mrm $i; done Run Mail queue runq -qqff&
Posted by Cristi4n, 08-15-2009, 04:10 AM until you can find the spammer you can block access for 'nobody' or 'apache' a.s.o. through iptables. Do you by chance have csf or apf installed ?
Add to Favourites 
Print this Article
Also Read
