General discussion

Locked

Hijacking - Email Server

By elbertsim ·
We have our own domain name and run our own email server. How to know somebody has hijacked our email server to send large amounts of (spam?) email? how to stop it and how to prevent?

This conversation is currently closed to new comments.

7 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by mgonzales In reply to Hijacking - Email Server

On the server - Internet Mail Service - routing tab. Make sure that you selected "Do not reroute incoming smtp mail". This will tell exchange not to relay any mail not destined for your domain.

Collapse -

by elbertsim In reply to

Poster rated this answer.

Collapse -

by dev/hda1 In reply to Hijacking - Email Server

Yea, just disable relay for external IP's and make sure that only the computers on your network can relay mail.

I know in exchange 2000, just goto system manager, smtp, default smtp server, properties, access, relay. set that to only include your domain subnet (probably include your isp's smtp server as well).

to check whether there's illegal activity, i'd say find youself packet monitoring software and log any smtp packets and their origins and see who and what is sending mail.

i personally use this to check for any mass-mailing worms. works like a charm.

Collapse -

by elbertsim In reply to

Poster rated this answer.

Collapse -

by javaid7 In reply to Hijacking - Email Server

I have the same problem but my ISP has asked me to deselect this option and select ( rerout incommin SMTP mail (required for POP3/IMAP4 support) and have added my domain.

Please advise if this setting is wrong
Thank you

Collapse -

by elbertsim In reply to

Poster rated this answer.

Collapse -

by elbertsim In reply to Hijacking - Email Server

This question was closed by the author

Back to Software Forum
7 total posts (Page 1 of 1)  

Related Discussions

Related Forums