Spam bypassing gateway server
mailscanner at ecs.soton.ac.uk
Tue Jan 20 16:16:33 GMT 2004
At 16:03 20/01/2004, you wrote:
>Trying to figure out how some spam is totally bypassing the gateway mail
>server and not being scanned by MailScanner. The gateway server is the only
>MX record, mail sent from the regular mail server to a local domain still
>goes out and is scanned by the gateway server then delivered.
>On the ones getting through there's no MailScanner headers added, there's
>also no headers from it hitting the gateway server at all. If it was a
>timeout issue shouldn't it at least have the regular mail headers added?
Is the rest of your network firewalled properly? Is there any way to get to
port 25 on any other servers except the gateway mail server? The MX tells
people where they *should* deliver mail. There's nothing stopping the
spammers trying some other host.
Also, on your MailScanner system, check you have stopped the original
sendmail process from running (the one with "-bd" *and* "-q15m" or some
such number in its command-line).
MailScanner thanks transtec Computers for their support
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
More information about the MailScanner