many spam email from same account

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
User avatar
fferraro87
Advanced member
Advanced member
Posts: 99
Joined: Thu Apr 28, 2016 8:58 am

Re: many spam email from same account

Postby fferraro87 » Fri Sep 28, 2018 10:04 am

DualBoot wrote:just grep user_saslname , not with the account name.
Then sort and count. Maybe the user_saslname is different from the sender.
An other explanation is the use of the webmail by the attacker.

yeah sure, but i've a question.
every time an user send an email i've to see a line on zimbra.log with sasl_username of sender right?
Because i've sent right now an email from that server and i haven't sasl_username line on log


User avatar
DualBoot
Elite member
Elite member
Posts: 1308
Joined: Mon Apr 18, 2016 8:18 pm
Location: France - Earth
ZCS/ZD Version: ZCS FLOSS - 8.8.15 Mutli servers
Contact:

Re: many spam email from same account

Postby DualBoot » Fri Sep 28, 2018 12:27 pm

Using Thunderbird or Outlook ? sasl is for computer application.

Return to “Administrators”

Who is online

Users browsing this forum: No registered users and 15 guests