View All Products
Compute
Storage
Networking
Databases
Services
Developer Tools
Industries
Pricing
Community
Engage With Us
Community Questions Need some help - spammers sending from my linode - I'll pay$
Log in to Ask a Question

Need some help - spammers sending from my linode - I'll pay$

email

So, my server seems to be sending a ton of spam:

Apr 21 22:28:07 wiggins postfix/smtp[26636]: BFF6CF2401: to=<tgonzalez@nefflorida.com>, relay=mail2.metbp.com[216.163.240.103]:25, delay=88504, delays=88473/0.33/31/0, dsn=4.0.0, status=deferred (host mail2.metbp.com[216.163.240.103] refused to talk to me: 450 Requested action not taken - The client IP was present in the following DNSBL: bl.spamcop.net)

Apr 21 22:28:07 wiggins postfix/smtp[26667]: connect to mindspring.net[209.86.62.44]:25: Connection timed out

Apr 21 22:28:07 wiggins postfix/smtp[26667]: 83C6CF263B: to=<terriphotography@mindspring.net>, relay=none, delay=47244, delays=47213/0.88/30/0, dsn=4.4.1, status=deferred (connect to mindspring.net[209.86.62.44]:25: Connection timed out)

Apr 21 22:28:08 wiggins postfix/smtp[26679]: connect to mail.homelite.com[64.213.55.3]:25: Connection timed out

Apr 21 22:28:08 wiggins postfix/smtp[26679]: 4A150F263F: to=<ennett@homelite.com>, relay=none, delay=47238, delays=47207/0.4/31/0, dsn=4.4.1, status=deferred (connect to mail.homelite.com[64.213.55.3]:25: Connection timed out)

Apr 21 22:28:08 wiggins postfix/smtp[26678]: connect to forgreer.com[82.98.86.167]:25: Connection timed out

Apr 21 22:28:08 wiggins postfix/smtp[26678]: D7732F2828: to=<ichriskof81@forgreer.com>, relay=none, delay=38436, delays=38404/1.3/30/0, dsn=4.4.1, status=deferred (connect to forgreer.com[82.98.86.167]:25: Connection timed out)

Apr 21 22:28:08 wiggins postfix/smtp[26290]: connect to netants.net[70.39.99.88]:25: No route to host

Apr 21 22:28:08 wiggins postfix/smtp[26290]: 88274F281D: to=<john@netants.net>, relay=none, delay=38458, delays=38427/1.2/30/0, dsn=4.4.1, status=deferred (connect to netants.net[70.39.99.88]:25: No route to host)

Apr 21 22:28:08 wiggins postfix/smtp[26694]: connect to mx3.pt.lu[195.46.255.249]:25: Connection timed out

Apr 21 22:28:08 wiggins postfix/smtp[26694]: 87C1FF2431: to=<steve77@pt.lu>, relay=none, delay=84754, delays=84722/1.2/31/0, dsn=4.4.1, status=deferred (connect to mx3.pt.lu[195.46.255.249]:25: Connection timed out)

Apr 21 22:28:09 wiggins postfix/smtp[26652]: connect to postoffice03.mail-hub.dodo.com.au[202.136.40.236]:25: Connection timed out

I have no idea how to stop this. Is anyone willing to help me out if I pay you?

I'm sure it's a simple config thing, but I don't know enough to be able to sort it out. As you can see, my linode is getting blacklisted by everyone.

2 Replies

First, what's your postfix configuration? ("postconf" will print this out in one glop.)

Secondly, is postfix configured as an open relay? This tool might help.

Third, where did the messages come from? You might have to dig back through your mail logs to figure this out. Are you running a web server that runs executable code (e.g. PHP scripts, perl scripts, etc)? Are any of these supposed to send mail?

This is a dup post of http://forum.linode.com/viewtopic.php?p=49995

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Log in to Reply
Community Code of Conduct