S
SForsgren
Guest
I have a MAC Tiger OS box running with only port 80 and 25 open. I had a problem earlier where the PostFix enabler for sending and receiving mail had an open relay and someone used it to send a number of phishing emails. That was subsequently resolved with an upgrade to Postfix Enabler and some configuration changes to remove any relays. The mass send problem has not been observed since that time.
The problem now is that 2 times per day, I see an email outgoing from my server under the 'www' user which is not the user that shows if I send it from my mail client (Mail.app or SquirrelMail). It is going to an address on yahoo that I do not recognize.
I have no idea where this email is originating and no understanding of how to further diagnose it. I have run Norton, ClamXAv and other spyware products and everything is now scanning clean.
If someone could provide me with some additional thoughts on how to debug this, I would be very greatful.
Be well,
Scott
The problem now is that 2 times per day, I see an email outgoing from my server under the 'www' user which is not the user that shows if I send it from my mail client (Mail.app or SquirrelMail). It is going to an address on yahoo that I do not recognize.
I have no idea where this email is originating and no understanding of how to further diagnose it. I have run Norton, ClamXAv and other spyware products and everything is now scanning clean.
If someone could provide me with some additional thoughts on how to debug this, I would be very greatful.
Be well,
Scott