Outbound Spam from server.

I am compiling an article on Spamming from shared webservers. This is basically to help sys-admins to detect the source of spam. Article'll contain steps for detection and recovery .... but NOT prevention.

I have got situations like , a user creates a PHP script that read the mail addresses stored in Mysql database to send out mass mails. Also had vulnerabilities like FormMail being misused.

If there are any sys-admins out there , who encountered such spammers ... can you help me by describing the situation and also the steps you used to detect the culprit . I would be really obliged, if you could contribute s'thing for my article.

 

 

 

 

Top