Spam Problem

I have a machine that someone keeps sending spam out of, yet I cannot figure out how they are doing it.

No one has shell access to the machine, and we are 99.9% sure the machine was not rooted (all the latest updates, only 1 shell account on the box, and all passwords very long and complex). Exim is the mail server and it is not an open relay.

Anyone that has a web site on the machine CANNOT run cgi or php. Formmail (or any form program for that matter) is not installed on the system.

Any other ideas on what I may be missing?

Thanks in advance
Ryan

 

 

 

 

Top