I am using SIMS version 1.8B9d14. For the second time in about the last 3 weeks, my server has been hijacked by spammers apparently relaying their crap through my server. Anyways, that is what I am led to believe when SIMS stops responding because it has run out of memory, and I find almost 28,000 messages stuck in the Queue folder. The only way I can recover this is delete the whole queue folder and let SIMS rebuild a new one. The first time I accepted responsibility and figured that an IP in my CLient Hosts was an open relay and they were getting to me through it. However, I deleted every single IP address in the Client Hosts IP list, so the only way anyone should be able to relay is the clients on this SIMS server.
Thus, I have no IPs in the Client Host lists, I have a long list in my Black Listed IPs, I have use Blacklist DNS Servers checked, I have verify return paths checked, and I use several RBLs, which include the following.
cbl.abuseat.org opm.blitzed.org sbl.spamhaus.org cn-kr.blackholes.us singapore.blackholes.us nigeria.blackholes.us malaysia.blackholes.us brazil.blackholes.us relays.ordb.org korea.services.net
So, how can I have all of this junk that appears to be relays in my Queue when I have every single anti-spam option checked? The first time, I was fortunate that this old PowerMac 8500 doesn't have a lot of memory and SIMS clammed up early. My IP, 199.3.212.41 was reported to ORDB to check for an open relay, but it passed. But apparently there is something wrong here. I have my SMTP logging set as high as it'll go, but I have a 38MB log so far for today, and am not sure what to look for as a clue to what is going on here. Any help would be greatly appreciated. We are a very small publishing company with simple email needs, but maybe we need to look at a commercial solution. I also use SIMS on my home network as a hobby to run mailing lists, so I would like to keep running SIMS there (from which I am sending you this email), so far it hasn't been attacked by spam relayers.
Thus, with all of the anti-spam options on, and relaying for clients only, how can spammers get in and use me as a relay? Most of my users are on Macintoshes, except for perhaps a couple of outbound sales people and a couple of advertisers, and most of those have dial up connections.
Joe Sporleder a Desperate SIMS administrator!
############################################################# This message is sent to you because you are subscribed to the mailing list <[EMAIL PROTECTED]>. To unsubscribe, E-mail to: <[EMAIL PROTECTED]> To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]> To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]> Send administrative queries to <[EMAIL PROTECTED]>
