I have someone sending SPAM from one our servers. The user id is nobody/mail which isn't much help could any one of our users. The message doesnt link to any of our hosted sites and the From: header has been forged.
Nightmate. Having a lot of trouble tracking this. In the meantime I want Exim to check outgoing mail to ensure that the From: header is in /etc/localdomains. It seems that it is not doing this.
