Forums

WordPress › Support » Miscellaneous

[resolved] Anyone come across this spam attack? (5 posts)

  1. goldeneagle
    Member
    Posted 5 years ago #

    Hi

    My WordPress admin email account (admin@mydomain) has just started to send me spam emails. And maybe it's sending them to other people too.

    The message being emailed is

    QUOTE:

    nice...

    email advertise like this to 8,000,000 people this week for free..

    http://www . emailadvertisinginc . com/

    the above noncommercial offer is only for noncommercial charities only. press on charity info on our web site for full and complete details. this offer is not a commercial service and is not at all for sale or lease or trade of any kind.

    UNQUOTE

    Any suggestions as to how I could have got infected like this, and how to get rid of it?

    Many thanks

  2. whooami
    Member
    Posted 5 years ago #

    thats a pretty normal thing, and not neccessarily a WP issue.

    admin@anydomain,com always tends to see email spam, and the from and to fields in ANY email are open to whatever anyone wants to put into them.

  3. Quix0r
    Member
    Posted 5 years ago #

    As long as your server is accepting email from unreachable (faked) email-addresses you will receive more spam.

    Aside many other things, I test this in my main.cf (postfix)

    reject_invalid_hostname,
    reject_multi_recipient_bounce,
    reject_non_fqdn_recipient,
    reject_non_fqdn_sender,
    reject_unauth_destination,
    reject_unauth_pipelining,
    reject_unknown_recipient_domain,
    reject_unknown_sender_domain,
    reject_unverified_recipient,
    reject_unverified_sender

    If you are interested in my VHCS main.cf and master.cf files then please send me an email and I send you back the links to them.

    roland [at] NOSPAM_REMOVE_THIS haeder [dot] net

  4. goldeneagle
    Member
    Posted 5 years ago #

    Thanks to you both. Roland / Quixor - as my blog is hosted at a third party service provider I don't have much control over the mail configuration. But I'll contact my webhost's support to see if they can help with this.

  5. Quix0r
    Member
    Posted 5 years ago #

    Oh, oops. I need to mention that "root-access" (btw: over a "normal" user account and then become root with "su") on your server is needed for doing this. :-)

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.