Find the answer to your Linux question:
Results 1 to 7 of 7
i think somebody is spamming through my server, whenevr i give the command exim -bp it list messages that frozen in the que like this 36h 44K 1DWAB5-0004qF-T9 <> *** ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    May 2005
    Posts
    14

    plzz help i think somebody is spamming through my server


    i think somebody is spamming through my server, whenevr i give the command exim -bp it list messages that frozen in the que
    like this
    36h 44K 1DWAB5-0004qF-T9 <> *** frozen ***
    sethiamarpal@karvy.com

    35h 45K 1DWB7U-0004t3-DP <> *** frozen ***
    28782@deregulatory.benetek.com

    29h 45K 1DWGq6-0005yA-QQ <> *** frozen ***
    mfspatna@karvy.com

    13h 44K 1DWWKF-0003Sp-Ut <> *** frozen ***
    3dpbamlani@karvy.com

    11h 45K 1DWXbW-0005s8-TI <> *** frozen ***
    k000000a7@karvy.com
    But they are not showing the person sending the email, please tell me how can i find the person you sent these emails.
    Plzz help

  2. #2
    Linux Newbie
    Join Date
    Mar 2005
    Posts
    230
    It's not a guarantee that they are trying to spam through your server. You should test to see if you can relay mail through that server.

    Another possibility is that somebody sent an email to a non-existent mail address on your server, and your server is bouncing the email back to k000000a7@karvy.com FROM <>, but is having a hard time of doing so.

  3. #3
    Just Joined!
    Join Date
    May 2005
    Posts
    14
    Hi silent rage,

    Thanx for replying to my message
    Sorry, wasn't able to convey myself correctly, my server requires authentication to rely email, but what i want to kanow is if any of my user is using the service to spam people, cause i am getting frequently frozen messages every day when i logon to it

  4. #4
    Linux Newbie
    Join Date
    Mar 2005
    Posts
    230
    Well, I run a mail server, and I got a lot of stuff like that in my queue. It's just bounced spam that were sent to a non-existant mailbox.

    You could also check your mail log. It may log such things in /var/log/maillog.

  5. #5
    Linux Enthusiast puntmuts's Avatar
    Join Date
    Dec 2004
    Location
    Republic Banana
    Posts
    562
    Exim logs this, so look at your logfiles (mainlog, rejectlog). Most of the times it is a bounced message, which cannot be delivered to a non-existing mail address. You can remove it from the queue using
    Code:
    exim -Mrm <message id>

  6. #6
    Just Joined!
    Join Date
    May 2005
    Posts
    14
    Hi Puntmuts,

    But Where are the logs located in case of exim.

  7. #7
    Linux Enthusiast puntmuts's Avatar
    Join Date
    Dec 2004
    Location
    Republic Banana
    Posts
    562
    That depends on your implementation/distro. In archlinux they are in /var/log/exim but that could in your case be /var/log/mail or /var/log/ .

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •