Server allows open relay regardless settings

rybosom
Posts: 5
Joined: Mon Jul 17, 2017 8:10 am

Server allows open relay regardless settings

Postby rybosom » Wed Aug 02, 2017 11:59 am

Hi,
Using MailEnable Enterprise 9.74 on Windows Server 2012 R2.

Since yesterday morning my server is being abused relaying countless spam emails.

Code: Select all

Relay settings are as following:
Allow Mail Relay - checked
Allow relay for authenticated senders - checked
Allow relay for priviledged IP ranges - unchecked
Allow relay for local sender addresses - unchecked
POP before SMTP authentication - checked (remember IP address for 30 minutes)


All of the time server receives SMTP Inbound connections from my public IP with some random Remote Domains and fake [SMTP:address]. also on SMTP Outbound connections i have dozens of connections on random IPs, and some have my postmaster as sender. All that makes no sense to me.

Any support appreciated

MailEnable-Ian
Site Admin
Posts: 8466
Joined: Mon Mar 22, 2004 4:44 am
Location: Melbourne, Victoria, Australia

Re: Server allows open relay regardless settings

Postby MailEnable-Ian » Tue Aug 08, 2017 3:56 am

Hi,

Most likely you have a mailbox that has been compromised and the spammer is authenticating using the mailbox password to send out spam. To determine the source of abuse start by reviewing the following articles:

http://www.mailenable.com/kb/content/article.asp?ID=me020339
http://www.mailenable.com/kb/content/article.asp?ID=me020280
Regards,

Ian Margarone
MailEnable Support

Who is online

Users browsing this forum: No registered users and 6 guests