New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Suspend the account?
You can disable ports by UID in iptables. Disable port 25, make the rest their problem
Here this will help you if you have shell access and WHM
Install CSF and Enable SMTP_block, Enable SMTP Allow Local you can disable 25 as previous member mentioned.
If you need further help or instruction I'll be watching for reply. I'd be happy to help with this issue.
If your cpanel server iass hacked, I suggest hiring someone who knows whats what.
This doesn't work if they're using sendmail/mail()
Thankfully we wrote a system to deal with that though.
Francisco
Should if suphp, shouldn't be any proc running under their account that isn't owned by their UID.
Maybe i'm wrong, the biggest issue I could see with that is it'll affect all email accounts, not just sendmail/mail().
Francisco
may i know how to disable phpmail on all account and enable on select/withlist account?
You can look at the logs to see who is sending mass email.