Hello I have a CentOS cPanel server and I host about 30 customers in this server. Sometimes one of these accounts using a CMS get hacked, and the hacker is able to send out spam email using a CMS php vulnerability. When it happens I see hundred of rows like this below in EXIM log:
2019-07-29 06:40:30 cwd=/home/nordic/public_html 4 args: /usr/sbin/sendmail -t -i -p125 My question is, may I configure temporarily exim.conf to block any email sent from: /home/nordic/public_html If yes, how to do that please? Thank you Graziano -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
