For real, but if I remember correctly was only an issue with older version of IMail when users sent email from the web interface it would come from 127.0.0.1 not sure if you still need it but it does not hurt to have it.
David Barker Mails Best Friend Email : [email protected] Web : www.mailsbestfriend.com <http://www.mailsbestfriend.com/> Office : 866.919.2075 Mobile : 978.518.6461 cid:[email protected] From: [email protected] [mailto:[email protected]] On Behalf Of Martin Schaible Sent: Friday, July 26, 2013 12:18 PM To: [email protected] Subject: [MBF]AW: Using Hijack The setting ALLOWIP 127.0.0.1 is this for real or only an example? Freundliche Grüsse ---------------------------------------------------------------------------- ------- Merlin Consulting GmbH | Martin Schaible Bahnhofstrasse 27 | CH-8702 Zollikon | Switzerland Tel.: +41 44 391 30 00 | Fax: +41 44 391 32 49 E-Mail: [email protected] | www.merlinconsulting.ch Helpdesk: helpdesk.merlinconsulting.ch GPS: N47 20.235 E8 34.226 Wird sind nun auch auf Facebook präsent: www.facebook.com/MerlinConsultingGmbH ---------------------------------------------------------------------------- ------- News - Unsere Produkte: .:. Astaro .:. SmarterTools .:. Declude AntiSpam für SmarterMail .:. ARM Research MessageSniffer für SmarterMail .:. delight software GmbH .:. JMuffin CMS .:. ESET Antivirus & Internet Security Solutions .:. Lockstep Systems - Backup Software .:. Paessler Network Monitoring ---------------------------------------------------------------------------- ------- Von: [email protected] [mailto:[email protected]] Im Auftrag von David Barker Gesendet: Dienstag, 16. Juli 2013 18:47 An: [email protected] Betreff: [MBF]Re: Using Hijack http://web.archive.org/web/20121018011026/http://www.declude.com/searchresul ts.asp?Cat=125 <http://web.archive.org/web/20121018011026/http:/www.declude.com/searchresul ts.asp?Cat=125> Let us know if you need further help. David Barker Mails Best Friend Email : [email protected] Web : www.mailsbestfriend.com <http://www.mailsbestfriend.com/> Office : 866.919.2075 Mobile : 978.518.6461 cid:[email protected] From: [email protected] [mailto:[email protected]] On Behalf Of Michael Cummins Sent: Tuesday, July 16, 2013 12:09 PM To: [email protected] Subject: [MBF]Re: Using Hijack Ive never used this before, I was always afraid of stopping good customer mail whenever they sent out industry blasts. Maybe I should review it again. Are the docs still online? Michael Cummins From: [email protected] [mailto:[email protected]] On Behalf Of Todd Richards Sent: Tuesday, July 16, 2013 11:51 AM To: [email protected] Subject: [MBF]Re: Using Hijack Hi Martin Our settings are as follows: RELAYTHRESHOLD1 10 50 RELAYTHRESHOLD2 30 200 We had a few users who regularly sent announcements to their clients, and they would always trip this. So I made sure they had a static IP for their office, then whitelisted it underneath that with ALLOWIP xxx.xxx.xxx.xxx Its a great tool, and it actually came in handy a few months ago when a users account was compromised. The spammer tried to send several thousand messages, but all but 200 were caught and held. I also have a script that monitors the hijack folder and alerts me when anything lands in there. Todd ______________________________________________ Todd Richards Director of Technology National Network, LLC. Email: <mailto:[email protected]> [email protected] Toll Free: 800.638.8681 Fax: 800.638.8681 <http://www.nnepa.com/> Visit us on the web! www.nnepa.com From: [email protected] [mailto:[email protected]] On Behalf Of Martin Schaible Sent: Tuesday, July 16, 2013 10:13 AM To: [email protected] Subject: [MBF]Using Hijack Hello, Recently we had an issue with a compromised account. A spammer was able to send many mails over our server. Im trying to protect the server against situations like this. Using HijackRelease would be an idea. >From the textfile HijackRelease.txt I learned, that HijackRelease needs to be started from the command line. I could automate this adding a line in the registry at the run key. Did somebody try to run HijackRelease with a windows service wrapper? Im not sure, if the default settings are really practicable: RELAYTHRESHOLD1 10 50 RELAYTHRESHOLD2 30 100 What settings do you use? Many thanks Freundliche Grüsse ---------------------------------------------------------------------------- ------- Merlin Consulting GmbH | Martin Schaible Bahnhofstrasse 27 | CH-8702 Zollikon | Switzerland Tel.: +41 44 391 30 00 | Fax: +41 44 391 32 49 E-Mail: [email protected] | www.merlinconsulting.ch Helpdesk: helpdesk.merlinconsulting.ch GPS: N47 20.235 E8 34.226 Wird sind nun auch auf Facebook präsent: www.facebook.com/MerlinConsultingGmbH ---------------------------------------------------------------------------- ------- News - Unsere Produkte: .:. Astaro .:. SmarterTools .:. Declude AntiSpam für SmarterMail .:. ARM Research MessageSniffer für SmarterMail .:. delight software GmbH .:. JMuffin CMS .:. ESET Antivirus & Internet Security Solutions .:. Lockstep Systems - Backup Software .:. Paessler Network Monitoring ---------------------------------------------------------------------------- -------
<<image001.png>>
<<image002.gif>>
