I think that the best way to avoid this kind of problem is making an OUTPUT
filter that insert email headers (from, to, date/time) into a sql table to
EACH message your XMail sends.
So you can schedule another script in your OS (every 5 minutes, for example)
that sum these table rows and take some action based on some rules (same
FROM sending more than 5000 messages a day = BLOCK, same domain sending more
than 20000 messages a day = BLOCK, etc, etc).
Without this, you will became crazy trying to analyze tons os logs...
Regards
Edinilson
------------------------------------------
ATINET
Tel Voz: (0xx11) 4412-0876
http://www.atinet.com.br
----- Original Message -----
From: "Spyros Tsiolis" <sts...@yahoo.co.uk>
To: "XMail Users Mailing List" <xmail@xmailserver.org>
Sent: Tuesday, May 21, 2013 3:35 PM
Subject: Re: [xmail] message logging
________________________________
From: Stefano Pascucci <s.pascu...@cdq.it>
To: XMail Users Mailing List <xmail@xmailserver.org>
Sent: Tuesday, 21 May 2013, 19:05
Subject: Re: [xmail] message logging
Hi Spyros
I experienced a similar situation some months ago: one of my
server email owner was sending tons of spam
After figthing with many log files, I have discovered that the
hacker had been able to hack the mailbox pwd, and he was sending
the email using smtp autetication method.
You can find the evidence of that inside the smtp log, looking for
all the authenticated users that are sending email, and find the
ones that are spam
Hi Stefano,
That's just it. I don't know of a way to check the log files for outgoing
mail.
That's what I am asking.
Thank you though,
s.
----
"I merely function as a channel that filters
music through the chaos of noise"
- Vangelis
_______________________________________________
xmail mailing list
xmail@xmailserver.org
http://xmailserver.org/mailman/listinfo/xmail
_______________________________________________
xmail mailing list
xmail@xmailserver.org
http://xmailserver.org/mailman/listinfo/xmail
