Hello David,
You wrote: Hijack release is not related to the spammer you caught correct Im in trouble to understand this. The compromised account was the reason to think about the situation ;-) So, I remembered, that we have hijack release to help preventing situations I had. Freundliche Grüsse ---------------------------------------------------------------------------- ------- Merlin Consulting GmbH | Martin Schaible Bahnhofstrasse 27 | CH-8702 Zollikon | Switzerland Tel.: +41 44 391 30 00 | Fax: +41 44 391 32 49 E-Mail: [email protected] | www.merlinconsulting.ch Helpdesk: helpdesk.merlinconsulting.ch GPS: N47 20.235 E8 34.226 Wird sind nun auch auf Facebook präsent: www.facebook.com/MerlinConsultingGmbH ---------------------------------------------------------------------------- ------- News - Unsere Produkte: .:. Astaro .:. SmarterTools .:. Declude AntiSpam für SmarterMail .:. ARM Research MessageSniffer für SmarterMail .:. delight software GmbH .:. JMuffin CMS .:. ESET Antivirus & Internet Security Solutions .:. Lockstep Systems - Backup Software .:. Paessler Network Monitoring ---------------------------------------------------------------------------- ------- Von: [email protected] [mailto:[email protected]] Im Auftrag von David Barker Gesendet: Dienstag, 16. Juli 2013 17:29 An: [email protected] Betreff: [MBF]Re: Using Hijack Martin, As you are SM you can just move any good messages you want released right into the \Spool it is not necessary that they be renamed this is only applicable to iMail. The current settings you are using seem standard. No need to change them unless you having problems. Just so I am clear you are asking 2 different questions right. Hijack release is not related to the spammer you caught correct ? David Barker Mails Best Friend Email : [email protected] Web : www.mailsbestfriend.com <http://www.mailsbestfriend.com/> Office : 866.919.2075 Mobile : 978.518.6461 cid:[email protected] From: [email protected] [mailto:[email protected]] On Behalf Of Martin Schaible Sent: Tuesday, July 16, 2013 11:13 AM To: [email protected] Subject: [MBF]Using Hijack Hello, Recently we had an issue with a compromised account. A spammer was able to send many mails over our server. Im trying to protect the server against situations like this. Using HijackRelease would be an idea. >From the textfile HijackRelease.txt I learned, that HijackRelease needs to be started from the command line. I could automate this adding a line in the registry at the run key. Did somebody try to run HijackRelease with a windows service wrapper? Im not sure, if the default settings are really practicable: RELAYTHRESHOLD1 10 50 RELAYTHRESHOLD2 30 100 What settings do you use? Many thanks Freundliche Grüsse ---------------------------------------------------------------------------- ------- Merlin Consulting GmbH | Martin Schaible Bahnhofstrasse 27 | CH-8702 Zollikon | Switzerland Tel.: +41 44 391 30 00 | Fax: +41 44 391 32 49 E-Mail: [email protected] | www.merlinconsulting.ch Helpdesk: helpdesk.merlinconsulting.ch GPS: N47 20.235 E8 34.226 Wird sind nun auch auf Facebook präsent: www.facebook.com/MerlinConsultingGmbH ---------------------------------------------------------------------------- ------- News - Unsere Produkte: .:. Astaro .:. SmarterTools .:. Declude AntiSpam für SmarterMail .:. ARM Research MessageSniffer für SmarterMail .:. delight software GmbH .:. JMuffin CMS .:. ESET Antivirus & Internet Security Solutions .:. Lockstep Systems - Backup Software .:. Paessler Network Monitoring ---------------------------------------------------------------------------- -------
<<image001.png>>
