JAMES has no (known) backdoor for SPAM. Are you sure that your server
hasn't been compromised? That would be the most logical explanation for
> The server attempts to deliver this mail even when we disable SMTP and
> run james as a POP3 server only.
JAMES does not post mail unless it comes in via SMTP or is put manually into
its spooler, which would be a good trick.
> We have confirmed that when we shut the James process down completely
> and run Sendmail SMTP only that the mail stops
That could mean that the mail pending in the remote delivery queue already,
which defaults to almost a week of retries (as per the RFC).
> Approximately 10 minutes ago, I shut james down, cleaned out the
> ougtoing/ directory and restarted. Now it is starting to fill up
> again and I am watching the java CPU usage climb like a thermometer.
You can turn on debug for the smtphandler or just check the default level to
see what mail is arriving. You can turn on debug of the spool manager to
make sure that spam is being rejected.
> I would like to know what is recommended for the config.xml to create
> a "maximum security" configuration. We only need to allow relaying
> from a local client (specifically php webmail using NOCC) and from
> one other known IP address.
Use the <authorizedAddresses> element in the smtphandler. Allow only
localhost, your own IP and the other address. Period. And comment out any
notifiers for mis-addressed messages.
If that doesn't do the trick, get in touch with me and I'll see what I can
do to help.
--- Noel
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
