Hi
I have stopped the qmail and are examining the remote qmail list. There seem to be some spam in the remote queue.
When listing the different subjects (using qmHandle), this is what I get at the moment:
[root@ronja ~]# qmHandle -l|grep Subject|sort| uniq -c|sort -n
1 Subject: =?iso-8859-1?Q?Rigtige_m=E6nd_k=F8ber_vestas_inden_lukningen=21=21=21_?=
1 Subject: ***SPAM*** I busted you salg
1 Subject: ***SPAM*** Post XMAS Sale! Enjoy over HALF OFF on all Fashion Designer Footwear, Gucci Prada and MORE!
1 Subject: ***SPAM*** spring selection
1 Subject: ***SPAM*** To: salg
1 Subject: THE 3 Trades for the Next 8 Hours: DVN, 12:30 (TBD), 3:00 (TBD)
[root@ronja ~]#
5 of 6 mails are spam and they are all tagged as spam.
- How can I awoid that the SME server keeps sending these spam mails?
- How can I see who the sender is (e.g. sender IP).
Off cause I should also find the source of the spam. Either an infected local client or a hacked web application. How to figure out if it is a client or a web app has kindly been provided by Normando in this thread:
http://forums.contribs.org/index.php?topic=40959.0BR. Anders