Am 25.12.2010 19:55, schrieb ASAI:
Greetings,
In the logs I have been seeing many attempts made to send messages to
gmail which seem like there's spam being sent from my server. In the
logs I see this:
Dec 24 00:05:11 triata amavis[29729]: (29729-06) Passed CLEAN,
On Sun, Dec 26, 2010 at 07:28:11PM +0100, Martin Kellermann wrote:
Am 25.12.2010 19:55, schrieb ASAI:
In the logs I have been seeing many attempts made to send messages
to gmail which seem like there's spam being sent from my server.
In the logs I see this:
Dec 24 00:05:11 triata
On lør 25 dec 2010 19:55:10 CET, ASAI wrote
What is a problem is that there is no user named apa...@triata...
and this user is sending hundreds of emails out to Gmail. So it
looks like there's been a compromise. My question is, how do I
begin to plug this hole?
remove apache unix user
Le 25/12/2010 19:55, ASAI a écrit :
Greetings,
In the logs I have been seeing many attempts made to send messages to
gmail which seem like there's spam being sent from my server. In the
logs I see this:
Dec 24 00:05:11 triata amavis[29729]: (29729-06) Passed CLEAN,
Thanks to everyone for the priceless advice.
Greetings,
In the logs I have been seeing many attempts made to send messages to
gmail which seem like there's spam being sent from my server. In the
logs I see this:
Dec 24 00:05:11 triata amavis[29729]: (29729-06) Passed CLEAN,
apa...@triata.globalchangemultimedia.net -
* ASAI a...@globalchangemusic.org:
Greetings,
In the logs I have been seeing many attempts made to send messages to
gmail which seem like there's spam being sent from my server. In the
logs I see this:
Dec 24 00:05:11 triata amavis[29729]: (29729-06) Passed CLEAN,
Your web server has a compromised script. Turn off Apache until you fix the
problem.
-- Noel Jones
ASAI a...@globalchangemusic.org wrote:
Greetings,
In the logs I have been seeing many attempts made to send messages to
gmail which seem like there's spam being sent from my server. In the