Alright Kat! Took a while to find it, but they got in on the spam
account. Password changed, needless to say. Thanks for the help.
Susan Doucette
Information Technology
Santa Cruz City Schools
405 Old San Jose Rd.
Soquel, CA 95073
831-429-3410 x212
Katherine Kennnedy wrote:
Sounds like an easy password got brute forced. First, restart the smtp and
queue services so they are no longer authenticated. Look at your queue and
search your logs for the first time they authenticated to send through your
server. You can then find out what account they are using. Once you have that
you can reset the password. I had some dumby add an account test with password
test. Talk about a pain in my ass..
Kat
-----Original Message-----
From: Susan Doucette <[EMAIL PROTECTED]>
Sent: Wednesday, June 11, 2008 10:57 AM
To: [email protected]
Subject: Re: [IMail Forum] Have I been hacked?
I'm using IMail 2006.22 (I think - would love to know how to find the
exact version), but I've had IMail since v7.14 so it could be that I
just never looked at changing that option. I've never had any problems
being rejected as an open relay, no notice from abuse.net, etc. But just
to be sure I'm changing the setting to addresses only. Thanks for the tip.
~Susan
Susan Doucette
Information Technology
Santa Cruz City Schools
405 Old San Jose Rd.
Soquel, CA 95073
831-429-3410 x212
Patrick Childers wrote:
My mail server is set up to Relay for local users only.<
[The entire original message is not included]
To Unsubscribe: http://imailserver.com/support/discussion_list/
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://imailserver.com/support/kb.html
