Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
Dmitry Logvinenko2012-03-22 09:45:35
Fight against spam
Dmitry Logvinenko, 2012-03-22 09:45:35

Is my domain spamming?

There was a very big problem - spam is being sent from my domain. I learn from the responses to letters and Mail Delivery reports coming to the admin mail. The username is different every time - naturally, I don’t have real accounts. As mail, we use Google linked to the domain. Changed the passwords of the hosting admin panel, website, SSH and FTP. For now, it seems to be quiet.
How to determine if it is a backdoor or a fake email headers, and how to get rid of these nasty things.
Thanks in advance for your replies.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

5 answer(s)
Report
S
Sergey, 2012-03-22
@bondbig

Do you have an SPF record?
It's probably smtp-spoofing. SPF will not save 100% from spoofing, but it will make the task of spammers meaningless in most cases and they will fall behind your domain.

Report
S
shadowalone, 2012-03-22
@shadowalone

The simplest thing is, first of all, to make an SPF for the domain. For google-aps, just add to the entry:
include:aspmx.googlemail.com
Secondly, it would be nice to sign the DKIM domain.
All this if it's just phishing. If you have a beast on the server itself, then carefully look at the logs, run a scanner, such as rkhunter, etc. etc.

Report
G
Georgy Mogelashvili, 2012-03-22
@glamcoder

I had this problem with Windows Server 2008. Due to my inexperience, I configured the SMTP server poorly, and it allowed the possibility of using it as a mail relay. In my server outbox, about 65k letters were typed and sent without stopping.
Limit the ability of your SMTP mail to be sent from specific IP addresses.
Here test.nettools.ru/ you can check the possibility of using your server as a mail relay.
It was enough for me to leave access to the server only for itself by IP - the mailing lists ended

Report
A
AnViar, 2012-03-22
@AnViar

Can you show examples of emails with headers?

Report
D
Dmitry Logvinenko, 2012-03-24
@dmlogv

Well. Since the change of all possible passwords, no response from recipients or robots has yet come.

Similar questions
E
Eugene Karmazin2015-04-30 00:06:42
How to generate a test spam mailing to your test server? 1Reply
M
matperez2015-05-13 16:36:31
Where to complain about sms with links to a virus? 1Reply
W
weranda2019-10-10 16:54:21
How to get rid of calls from sellers (not picking up the phone with unfamiliar numbers is not an option)? 12Reply
M
min4er2019-10-16 17:42:09
How to unsubscribe from Google spam list? 1Reply
D
Denis Verbin2015-07-07 12:09:47
How to protect against postfix spam? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question