This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Outgoing spam problem.

Hi,

I use RBL, RDNS, SPF and BATV options but no greylist option for SMTP proxy. Incoming spam mails are checked against these rules with success. I am having troubles with outgoing spam mails. A few of our users seems to be infected by virus. As there are 5000-6000 mails per day for each mail traffic. These mails seems to be forged by some malware. These destination addresses are not valid so they wait in smtp spool.

What should I do to prevent these kind of outgoing spam? Yes I added some expressions about their content but I cant check every outgoing spam and write expressions for every different content.

Here the one of the spam destinations:-> ,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,

This thread was automatically locked due to age.

Parents

0 Krycek over 14 years ago

Probably their malware just abuses their Email-Client to send stuff. The connection will be opened by the Email Client (Outlook, Thunderbird, etc..) that in most cases has the password stored in its settings.
Although it can be possible for the virus/trojan/malware to catch the password with a keylogger or something I highly doubt it. Tto be completely secure you should change the password, clean those PCs and when you're sure the problem is gone change the password again.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Krycek over 14 years ago

Probably their malware just abuses their Email-Client to send stuff. The connection will be opened by the Email Client (Outlook, Thunderbird, etc..) that in most cases has the password stored in its settings.
Although it can be possible for the virus/trojan/malware to catch the password with a keylogger or something I highly doubt it. Tto be completely secure you should change the password, clean those PCs and when you're sure the problem is gone change the password again.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data