Results 1 to 6 of 6
  1. 2013-04-28 13:06 #1
    Ratatapa
    Ratatapa is offline
    BG's most likeable Québécois
    Pens win! Pens Win!!! PENS WIN!!!!!
    Join Date
    Sep 2007
    Posts
    37,887
    BG Level
    10

    Spam Problems (Exchange 2003)

    I have a user in at my new clients that seems to be spamming

    Here is the info and this is how it was setup when we got this client (we need toc hange everything in july)

    Server is SBS 2003 with Exchange they have a google postini account for SPAM filtering.

    The user that seems to spam is not in the company anymore so we transformed his email as forward only (normally forward email are not suppose to be able to send) Also the user is still in AD and has a different email for now like [email protected]

    So the user who is the local boss and the one who the old user email is forwared to send me a message with the Postini quarantine saying that [email protected] is sending spam

    But there is 2 strange things

    1) Like i said the adress is to a forwared email group and if i look into the message log of Exchnage with the sender, i see 0 emails from that account.

    Also my server is not Open Relay

    What else can i check?

    Thanks (PS Postini blocks the sending but the user still wanna know wtf is happening)
  2. 2013-04-29 03:44 #2
    Hellfury
    Hellfury is offline
    The Real Cookiemonster
    Join Date
    Jan 2007
    Posts
    1,842
    BG Level
    6
    FFXIV Character
    Dark Depravity
    FFXIV Server
    Sargatanas

    Have you verified that the sender IP of the e-mail is in the company IP range (and on the client the user uses), so that its not some external source merely giving up the wrong sender info [possibly through logging in via VPN or equivalent]?
    (of course, IP could be spoofed as well)
  3. 2013-04-29 08:14 #3
    xerodok
    xerodok is offline
    jponry
    Join Date
    Jul 2006
    Posts
    1,391
    BG Level
    6
    FFXI Server
    Phoenix

    Disable his account and reduce his mailbox to 0MB.
  4. 2013-04-29 11:34 #4
    xopher
    xopher is offline
    Nidhogg
    Join Date
    Feb 2008
    Posts
    3,790
    BG Level
    7
    FFXIV Character
    Tsugaru Mifra
    FFXIV Server
    Hyperion
    FFXI Server
    Ragnarok

    Quote Originally Posted by Hellfury View Post
    Have you verified that the sender IP of the e-mail is in the company IP range (and on the client the user uses), so that its not some external source merely giving up the wrong sender info [possibly through logging in via VPN or equivalent]?
    (of course, IP could be spoofed as well)
    This. Have you absolutely determined the spam is coming from this account?
  5. 2013-05-04 17:34 #5
    Ratatapa
    Ratatapa is offline
    BG's most likeable Québécois
    Pens win! Pens Win!!! PENS WIN!!!!!
    Join Date
    Sep 2007
    Posts
    37,887
    BG Level
    10

    Problem solved, the Idiot of client didn't check the dates, and those spam were from before we got the client ...

    Thanks lol
  6. 2013-05-04 23:28 #6
    Meresgi
    Meresgi is offline
    Ridill
    Join Date
    Jul 2008
    Posts
    11,247
    BG Level
    9

    Quote Originally Posted by Ratatapa View Post
    Problem solved, the Idiot of client didn't (insert)
    Hey that's like 100% of all the issues I have to deal with!
« Previous Thread | Next Thread »

Similar Threads

  1. Renaming Exchange 2003 domain
    By Ratatapa in forum Tech
    Replies: 3
    Last Post: 2012-12-03, 17:56