Sounds like an easy password got brute forced. First, restart the smtp and queue services so they are no longer authenticated. Look at your queue and search your logs for the first time they authenticated to send through your server. You can then find out what account they are using. Once you have that you can reset the password. I had some dumby add an account test with password test. Talk about a pain in my ass..
Kat -----Original Message----- From: Susan Doucette <[EMAIL PROTECTED]> Sent: Wednesday, June 11, 2008 10:57 AM To: [email protected] Subject: Re: [IMail Forum] Have I been hacked? I'm using IMail 2006.22 (I think - would love to know how to find the exact version), but I've had IMail since v7.14 so it could be that I just never looked at changing that option. I've never had any problems being rejected as an open relay, no notice from abuse.net, etc. But just to be sure I'm changing the setting to addresses only. Thanks for the tip. ~Susan Susan Doucette Information Technology Santa Cruz City Schools 405 Old San Jose Rd. Soquel, CA 95073 831-429-3410 x212 Patrick Childers wrote: >> My mail server is set up to Relay for local users only.< >> > [The entire original message is not included] To Unsubscribe: http://imailserver.com/support/discussion_list/ List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://imailserver.com/support/kb.html
