SitePoint Sponsor

User Tag List

Results 1 to 6 of 6
  1. #1
    SitePoint Enthusiast
    Join Date
    Jul 2011
    Location
    Malaysia
    Posts
    74
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    server module to block email spam?

    We own a dedicate server (Apache) and provide share hosting to 50 client. Each time when one of the client PC attack by virus, the particular PC will automatically send out spam email and causing the mail server IP block by ISP.

    How can we avoid this problem? Any server module to monitor spam, e.g. auto block number of email send out in short duration, or delay email send out for the particular client.
    Bored with reading SEO text article? Visit our blog,
    we collected interesting SEO Infographic.
    We are local SEO company in Kuala Lumpur, Malaysia.

  2. #2
    SitePoint Enthusiast vincewicks's Avatar
    Join Date
    Jan 2012
    Location
    Brooklyn, NYC
    Posts
    39
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Please provide some more info like mail server configured using postfix or qmail or something else?

    Have installed the package spamassassin etc?
    This site is the go-to place for web designs.

  3. #3
    SitePoint Enthusiast
    Join Date
    Jul 2011
    Location
    Malaysia
    Posts
    74
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by vincewicks View Post
    Please provide some more info like mail server configured using postfix or qmail or something else?

    Have installed the package spamassassin etc?
    I need to double check with the server guy, because we never direct handle server. By the way, what is the usual step to fight spam?
    Bored with reading SEO text article? Visit our blog,
    we collected interesting SEO Infographic.
    We are local SEO company in Kuala Lumpur, Malaysia.

  4. #4
    SitePoint Wizard gate2vn's Avatar
    Join Date
    Jan 2004
    Location
    Oslo, Norway
    Posts
    1,053
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    If you have a hosting control panel, it might have limitation feature, that you only allow each user can send out xx messages per hour, per day. DirectAdmin has that, for example.

    Using an outgoing-spam filter is much more better, but usually it costs more. We are currently using SpamExperts and it does good job.

    @vincewicks: Patrick is having trouble with outgoing spam messages from his server, not incoming spam messages to his emails.
    Clustered CloudLinux Hosting | WordPress Hosting |
    Advanced Antispam | Managed Xen VPS
    in US West coast and Asia-Pacific datacenters
    Contact us now on Twitter @vietnap

  5. #5
    Certified Ethical Hacker silver trophybronze trophy dklynn's Avatar
    Join Date
    Feb 2002
    Location
    Auckland
    Posts
    14,605
    Mentioned
    19 Post(s)
    Tagged
    2 Thread(s)
    gate2 has the approach to throttle the spam but requiring user login to send e-mail should stop the spam at the front door.

    UNLESS the client has been hacked (by not keeping his/her CMS up to date thereby allowing "script kiddies" to hack the account and send SPAM as the server). In that case BAN the client until he/she updates his/her CMS OR reinstalls. Failure to keep clients like this in line will bring your hosting service down.

    Regards,

    DK
    David K. Lynn - Data Koncepts is a long-time WebHostingBuzz (US/UK)
    Client and (unpaid) WHB Ambassador
    mod_rewrite Tutorial Article (setup, config, test & write
    mod_rewrite regex w/sample code) and Code Generator

  6. #6
    Certified Ethical Hacker silver trophybronze trophy dklynn's Avatar
    Join Date
    Feb 2002
    Location
    Auckland
    Posts
    14,605
    Mentioned
    19 Post(s)
    Tagged
    2 Thread(s)
    Sorry, I forgot to mention "maldet" scans which will find (and destroy/quarantine) malware but I've found that it needs to be installed by the host (apparently, it's very powerful so the host was reluctant to allow clients to do the install and setup the CRON to run it (on a daily basis). However, if you have a good host, they will do that for you and you'll have malware on your server identified in time to stem the tidal flow of SPAM.

    On an account-by-account basis, I also run a CRON script (PHP) which takes hashes of my ("infectable") files and stores them in a database. This script will then e-mail me on a daily basis that no files were changed or the list of files added, altered or deleted. I wrote an article for SitePoint with the code (but download the zip file for the latest code and article updates) and check in the Web Security board for more on similar topics.

    Regards,

    DK
    David K. Lynn - Data Koncepts is a long-time WebHostingBuzz (US/UK)
    Client and (unpaid) WHB Ambassador
    mod_rewrite Tutorial Article (setup, config, test & write
    mod_rewrite regex w/sample code) and Code Generator


Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •