Kiggs, Use SPAM Assaasin and also ensure you use SMTP authentication using SSL certificates for all ougoing emails from the Outlook clients. I suspect you have a spambot on the networking which is automating the process of "sending out spam from that your LAN IP". Also look at: http://www.cyberciti.biz/faq/postfix-smtp-authentication-for-mail-servers/
http://postfix.state-of-mind.de/patrick.koetter/smtpauth/smtp_auth_mailservers.html Kind regards, Francis On Fri, Jul 6, 2012 at 2:22 PM, Kiggundu Mukasa <[email protected]> wrote: > > > I have a problem that maybe someone can help with > > I have a linux box with postfix (SuSE 12.1) at a client. The box is the > gateway. > > I am not in charge of the LAN Hosts so cannot vouch for them BUT have been > assured that they are all covered by the latest Kaspersky and have been > scanned again and again (this has been going on for a week) > > When i check the mail queue there is a lot of SPAM > > I finally got a log analyzer (pflogsumm) for the logs and here is what I > get (The important bits) > > > connections time conn. avg./conn. max. time host/domain > ----------- ---------- ---------- --------- ----------- > 2109 -583:-20:-59 -995s 301s 127.0.0.1 > 1964 16:43:25 31s 313s 41.190.3.96 > > > > Senders by message count > ------------------------ > 3889 [email protected] > > So the thing I do not understand is that it is saying the server itself > 127.0.0.1 sent 2109 messages > And the biggest sender address was [email protected] who sent > 3889 messages > > I have used > http://www.checkor.com/ > and > http://www.mxtoolbox.com/diagnostic.aspx > > And the server is not an open relay > > I have also checked the box and I am the only one logging in. > > Any clues anyone? > > Kiggs > > > > > > > > > > -- Acta Virum Probant -- > > > _______________________________________________ > The Uganda Linux User Group: http://linux.or.ug > > Send messages to this mailing list by addressing e-mails to: > [email protected] > Mailing list archives: http://www.mail-archive.com/[email protected]/ > Mailing list settings: http://kym.net/mailman/listinfo/lug > To unsubscribe: http://kym.net/mailman/options/lug > > The Uganda LUG mailing list is generously hosted by INFOCOM: > http://www.infocom.co.ug/ > > The above comments and data are owned by whoever posted them (including > attachments if any). The mailing list host is not responsible for them in > any way. >
_______________________________________________ The Uganda Linux User Group: http://linux.or.ug Send messages to this mailing list by addressing e-mails to: [email protected] Mailing list archives: http://www.mail-archive.com/[email protected]/ Mailing list settings: http://kym.net/mailman/listinfo/lug To unsubscribe: http://kym.net/mailman/options/lug The Uganda LUG mailing list is generously hosted by INFOCOM: http://www.infocom.co.ug/ The above comments and data are owned by whoever posted them (including attachments if any). The mailing list host is not responsible for them in any way.
