Server compromised (exim headers) ?
location: linuxquestions.com - date: October 13, 2010
Welcome everybody (this is my first post) !
Today i noticed that there was spam sent from my server (centos5 + cpanel)
from headers it looks like the spam was sent as root:
X-AntiAbuse: Originator/Caller UID/GID - [0 0] / [47 12]
all packages on this server are up to date, including kernel.
Is it possible to send e-mail message so these headers will show that the Originator's UID/GID is 0/0 ? but as _regular_ user ?
if it's possible then there is still hope that the server is not hacked with root prvileges, but if it's not possible, that would indicate hacked server with root privs...
i have tried to send e-mail from regular user's account but when doing so, in headers i see:
X-AntiAbuse: Originator/Caller UID/GID - [558 555] / [47 12]
exim connection timed out error(host lookup is done fine)
location: linuxquestions.com - date: June 18, 2004
I am having a problem with my exim SMTP server.I am on a single machine network and dont need any fancy things to work.I just want exim to send my mails out.
When i use pine and send a message, it says the message has been send but no one ever ecieves the message.I look at the logs and this is what they say:
sending with exim: need fullyqualified hostname
location: linuxquestions.com - date: January 5, 2005
how to configure exim on a laptop in order to use correct sender addresses? Certain hosts reject reject the mails with a message like:
Exim DKIM DNS exploit Any evidence in logs? or else where
location: linuxquestions.com - date: October 30, 2012
I just updated my server to close the exim dkim exploit. Five days due since it's been out officaly.
I checked my logs to see if I could find any evidence of a break in but could not see any. Just the "normal" people trying to relay through. Also last log does not shown any awkward things. No changes in services or iptables rules. The only thing "new" is this
how to install exim?
location: linuxquestions.com - date: July 26, 2003
I have read the FAQ in its website. But to tell you the truth, I can not catch what it says very well.
I have to come here to ask for help.
THanks in advance.
force reinstall/reconfigure of broken packages in debian (exim) [SOLVED]
location: linuxquestions.com - date: April 7, 2014
I need to reinstall exim4-daemon-heavy on my system, and reinstall the files in /etc/exim4 (witch i presume are in exim4-base/exim4-config ?),
however apt-get refuses with the following errors:
Error: Unsplit config selected and /etc/exim4/exim4.conf.template missing ... exiting
dpkg: error processing exim4-config (--configure):
subprocess installed post-installation script returned error exit status 1
dpkg: dependency problems prevent configuration of exim4-base:
exim4-base depends on exim4-config (>= 4.30) | exim4-config-2; however:
Package exim4-config is not configured yet.
Package exim4-config-2 is not installed.
Package exim4-config which provides exim4-config-2 is not configured yet.
dpkg: error processing exim4-base (--configure):
dependency problems - leaving unconfigured
dpkg: dependency problems prevent configuration of exim4-daemon-heavy:
exim4-daemon-heavy depends on e
Setting up exim mail server
location: linuxquestions.com - date: April 7, 2014
Hi, I have been trying to set up an exim & courier mail server on a Debian 7 system. I have gotten the sasl authentication working on imap, although weirdly enough thunderbird says that no authentication is required (but a certificate is signed non the less..?). But for the life of me I cannot get the smtp + starttls up and running, exim keeps telling me "relay not permitted".
In an attempt at solving this I have searched around the web and gotten various different solution tips, this led to a rather messy and confusing configuration setup (that did not work). So in a rather foolish attempt at beginning again from scratch i deleted /etc/exim4 and tried to reinstall exim4-daemon-heavy, but to my horror apt-get does not install the /etc files!
So to recap: I am hopelessly lost here.. can any one help me out? Can I get apt-get to refill my /etc/exim4 settings? Can anyone give a comprehensive step-by-step solution to getting a fully working email server (does not have
Configure exim on Debian to redirect mail to another server
location: linuxquestions.com - date: July 28, 2008
I'm having some problems setting up my mail server. I have a mailserver (A)located in a network where port 25 is blocked for incoming connections. Thus, I've configured my server (A) to also listen on port 26 for smtp connections.
But now comes the tricky part: I want another server (B), which does has port 25 openend for the world, to function as a relay. But how do I make exim on B relay mail for server A to port 26 on A?
I've ben looking for a method to exim to do this, as well as an iptables rule for B that simply send all traffic directed to server A:25 to server A:26, but I haven't been abled to find a method for both of these.
Incoming mail not recieved in Exim on Debian
location: linuxquestions.com - date: November 27, 2004
I have a relatively old Apple Powermac running Debian PPC (stable) as a server. I recently have been trying to get Exim to work as my mail server, but have been having some difficulty. I am using the SquirrelMail webmail project as a client, running on Apache. I am able to send email from this account to my other cable ISP email account, but when sending email to the exim-served account, the mail is not recieved. I'm relatively new to Linux. I've looked through the config file, but haven't been able to figure it out.
Getting exim/spamassassin to scan locally delivered emails, not emails relayed via it
location: ubuntuforums.com - date: August 13, 2009
So I've got this server I use to collect emails for my domain, but I also use it to relay emails via it.
I've got SpamAssassin enabled and scanning emails inbound to that server just fine - Thunderbird can see the headers SpamAssassin adds and it knows how to deal with them.
However, SpamAssassin still scans emails that get relayed through the server to other addresses, like Hotmail or GMail accounts. How do I stop it doing that?
Basically, I uncommented the following section in exim4.conf.template:
spam = Debian-exim:true
message = X-Spam_score: $spam_score\n\