Servidor Zimbra genera SPAM

Post Reply
waperez
Posts: 1
Joined: Tue Nov 13, 2018 1:21 pm

Servidor Zimbra genera SPAM

Post by waperez »

Cordial saludo,
Es mi primera pregunta en el foro y solicito de su ayuda.

Administro un servidor zimbra 8.8.15 en ubuntu 16.04, hasta hace un unos 20 días sin mayo problema, mi ip con buena reputación y todos los correos llegaban a las bandejas de entrada de outlook y gmail, desde hace 20 días aproximadamente los correos enviados a outlook son rechazados, me inscribí en un programa que de outlook y diariamente se reporta que envió 50.000 correos a este dominio, cuando el promedio diario que envió desde mi dominio/ip a outlook son 400 correos. Investigando en internet aplique los tutoriales Zimbra: Seguridad (I 1, 2 y 3) de Jorge de la cruz, sin embargo se continua generando una alta cantidad de mensajes que salen de mi servidor Zimbra, he obligado el cambio de contraseña para todas las cuentas de mi servidor y aun así sigo generando spam. También hay un registro elevado en los informes mta_count (msgs), mas de 100.000 correos por hora.

En el informe diario aparacen correos que no existen en mi servidor

Pego mi Daily mail report for 2020-08-18

message deferral detail
-----------------------
error (total: 13)
13 7025: Connection refused
lmtp (total: 15)
15 7025: Connection refused
smtp (total: 629)
313 //postmaster.live.com (S843
102 Recipient address rejected: ERS-QIL. (in reply to RCPT TO command
64 //help.yahoo.com/kb/postmaster/SLN3434.html (in reply to MAIL ...
62 //postmaster.live.com (S844
13 //www.mail-abuse.com/cgi-bin/lookup?ip_ad ... .58.217.10 ...
10 //postmaster.live.com (S3113
5 GMAIIL.COM[208.73.211.177]:25: Connection timed out
4 Host not found, try again
3 hoymail.com[104.215.95.187]:25: Connection timed out
3 HOTAIL.COM[40.112.72.205]:25: Connection timed out
3 GMAIIL.COM[208.73.210.217]:25: Connection timed out
2 HOTAIL.COM[40.76.4.15]:25: Connection timed out
2 htomail.com[40.76.4.15]:25: Connection timed out
2 htomail.com[40.113.200.201]:25: Connection timed out
2 GMAIIL.COM[208.73.210.202]:25: Connection timed out
2 htomail.com[40.112.72.205]:25: Connection timed out
2 hoymail.com[52.164.206.56]:25: Connection timed out
2 HOTAIL.COM[104.215.148.63]:25: Connection timed out
1 4.7.0 UNE-PAVASFE05.une.net.co closing connection
1 GMAIIL.COM[208.73.211.165]:25: Connection timed out
1 HOTAIL.COM[13.77.161.179]:25: Connection timed out
1 HOTAIL.COM[40.113.200.201]:25: Connection timed out
1 4.7.500 Server busy. Please try again later from [200.58.2...
1 //support.google.com/mail/?p=OverQuotaTemp w5si3167591eja.645 ...
1 //support.google.com/mail/?p=OverQuotaTemp b15si12317788edy.34...
1 //support.google.com/mail/?p=OverQuotaTemp o12si13536114edr.36...
1 //support.google.com/mail/?p=OverQuotaTemp b4si14526961edf.40 ...
1 //support.google.com/mail/?p=OverQuotaTemp v15si13968085edq.57...
1 //support.google.com/mail/?p=OverQuotaTemp l13si14898710eja.67...
1 //support.google.com/mail/?p=OverQuotaTemp k13si13365438edq.47...
1 //support.google.com/mail/?p=OverQuotaTemp bk19si13505935ejb.7...
1 //support.google.com/mail/?p=OverQuotaTemp d17si13762810edp.46...
1 //support.google.com/mail/?p=OverQuotaTemp v6si12791000edq.488...
1 //support.google.com/mail/?p=OverQuotaTemp d17si12300179edz.21...
1 //support.google.com/mail/?p=OverQuotaTemp v20si2711456edl.269...
1 //support.google.com/mail/?p=OverQuotaTemp r10si12776463ejs.55...
1 //support.google.com/mail/?p=OverQuotaTemp v14si13569609ejx.38...
1 //support.google.com/mail/?p=OverQuotaTemp a1si12487766eju.9 -...
1 //support.google.com/mail/?p=OverQuotaTemp bh4si3962852ejb.629...
1 //support.google.com/mail/?p=OverQuotaTemp a12si13875964ejv.18...
1 //support.google.com/mail/?p=OverQuotaTemp z25si12249390ejr.59...
1 //support.google.com/mail/?p=OverQuotaTemp k25si12950049ejx.60...
1 //support.google.com/mail/?p=OverQuotaTemp u23si13833386edb.51...
1 //support.google.com/mail/?p=OverQuotaTemp i4si12578424ejz.318...
1 //support.google.com/mail/?p=OverQuotaTemp f1si13508370edw.580...
1 //support.google.com/mail/?p=OverQuotaTemp p16si13610163ejb.34...
1 //support.google.com/mail/?p=OverQuotaTemp g22si12900944edm.55...
1 //support.google.com/mail/?p=OverQuotaTemp q2si14874454edn.377...
1 //support.google.com/mail/?p=OverQuotaTemp r13si11263370eds.38...
1 //support.google.com/mail/?p=OverQuotaTemp u23si13337230edb.51...
1 //support.google.com/mail/?p=OverQuotaTemp dr8si6720185ejc.286...

message bounce detail (by relay)
--------------------------------
expertosabogados-com.mail.protection.outlook.com[104.47.58.110]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 AS(1440) (in reply to...
gmail-smtp-in.l.google.com[64.233.170.26]:25 (total: 4)
1 //support.google.com/mail/?p=NoSuchUser d12si4187290uam.186 - g...
1 //support.google.com/mail/?p=NoSuchUser y1si3991257vso.223 - gs...
1 //support.google.com/mail/?p=NoSuchUser g23si4114947uap.27 - gs...
1 //support.google.com/mail/?p=NoSuchUser u65si4059910vsu.184 - g...
gmail-smtp-in.l.google.com[64.233.170.27]:25 (total: 3)
1 //support.google.com/mail/?p=NoSuchUser h29si657464vsr.383 - gs...
1 //support.google.com/mail/?p=NoSuchUser q11si4031709vsn.143 - g...
1 //support.google.com/mail/?p=NoSuchUser h7si4197664vsm.279 - gs...
hotmail-com.olc.protection.outlook.com[104.47.12.33]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [DB3EUR04FT...
hotmail-com.olc.protection.outlook.com[104.47.17.161]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [VI1EUR05FT...
hotmail-com.olc.protection.outlook.com[104.47.18.225]:25 (total: 2)
2 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [VI1EUR06FT...
hotmail-com.olc.protection.outlook.com[104.47.18.97]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [AM6EUR05FT...
hotmail-com.olc.protection.outlook.com[104.47.40.33]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [CO1NAM03FT...
hotmail-com.olc.protection.outlook.com[104.47.55.161]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [BN8NAM12FT...
hotmail-com.olc.protection.outlook.com[104.47.56.161]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [CO1NAM11FT...
hotmail-com.olc.protection.outlook.com[104.47.58.161]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [BN8NAM11FT...
hotmail-com.olc.protection.outlook.com[104.47.58.33]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [DM6NAM10FT...
hotmail-com.olc.protection.outlook.com[104.47.59.161]:25 (total: 2)
2 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [DM6NAM12FT...
hotmail-com.olc.protection.outlook.com[104.47.70.33]:25 (total: 2)
2 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [BN7NAM10FT...
hotmail-com.olc.protection.outlook.com[104.47.74.33]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [BN8NAM04FT...
hotmail-com.olc.protection.outlook.com[104.47.8.33]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [AM5EUR03FT...
neuroinfancia.org[162.241.149.225]:25 (total: 1)
1 No Such User Here (in reply to RCPT TO command)
none (total: 90)
85 mail for mail.cenpi.com.co loops back to myself
3 cenpi.com.co
2 Host not found
outlook-com.olc.protection.outlook.com[104.47.49.33]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 (AS3130). [DM3NAM05FT...
soportica-com.mail.protection.outlook.com[104.47.58.110]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 AS(1440) (in reply to...
sura-com-co.mail.protection.outlook.com[104.47.38.36]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 AS(1440) (in reply to...
sura-com-co.mail.protection.outlook.com[104.47.56.110]:25 (total: 2)
2 //www.spamhaus.org/query/ip/200.58.217.10 AS(1440) (in reply to...
sura-com-co.mail.protection.outlook.com[104.47.57.110]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 AS(1440) (in reply to...
suramericana-com-co.mail.protection.outlook.com[104.47.38.36]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 AS(1440) (in reply to...
suramericana-com-co.mail.protection.outlook.com[104.47.51.110]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 AS(1440) (in reply to...
xm-com-co.mail.protection.outlook.com[104.47.37.36]:25 (total: 1)
1 //www.spamhaus.org/query/ip/200.58.217.10 AS(1440) (in reply to...

message reject detail
---------------------
END-OF-MESSAGE
from=<soreytuberquia2012@gmail.com> to=<contacto@cenpi.com.co> proto=ESMTP helo=<mail-io1-f43.google.com> (total: 1)
1 google.com
MAIL
4.3.0 Temporary lookup error (total: 79)
58 yahoo.com
10 google.com
5 cenpi.com.co
2 181.132.143.182
2 adidas.com
1 rappi.com.co
1 mtasv.net
RCPT
cannot find your hostname (total: 20)
12 200.1.173.111
3 139.138.57.127
2 192.30.133.203
1 139.138.35.19
1 209.85.215.182
1 93.159.210.52
Helo command rejected: Host not found (total: 68)
35 iphmx.com
20 outlook.com
9 etb.net.co
4 confe.com.co
Recipient address rejected: Access denied (total: 2)
1 sala9@cenpi.com.co
1 vanessaperez@cenpi.com.co
Recipient address rejected: cenpi.com.co (total: 130)
7 sala20@cenpi.com.co
4 gobaxopp@cenpi.com.co
4 sala52@cenpi.com.co
4 tykjgiegk@cenpi.com.co
4 va@cenpi.com.co
4 x@cenpi.com.co
3 avohioej@cenpi.com.co
3 chxoro@cenpi.com.co
3 dyuc@cenpi.com.co
3 e@cenpi.com.co
3 fono4@cenpi.com.co
3 ise@cenpi.com.co
3 sala15@cenpi.com.co
3 sala18@cenpi.com.co
3 sala29@cenpi.com.co
3 sala9@cenpi.com.co
3 unae@cenpi.com.co
3 yecazy@cenpi.com.co
2 fono3@cenpi.com.co
2 iacureive@cenpi.com.co
2 kdosahu@cenpi.com.co
2 liptaktar@cenpi.com.co
2 omezkj@cenpi.com.co
2 pxymyox@cenpi.com.co
2 sala1@cenpi.com.co
2 sala11@cenpi.com.co
2 sala13@cenpi.com.co
2 sala42@cenpi.com.co
2 sala5@cenpi.com.co
2 to3@cenpi.com.co
2 to4@cenpi.com.co
2 to7@cenpi.com.co
1 adrianacastro@cenpi.com.co
1 awireu@cenpi.com.co
1 bibhig@cenpi.com.co
1 comunicaciones@cenpi.com.co
1 d@cenpi.com.co
1 dyrcunagr@cenpi.com.co
1 hextolema@cenpi.com.co
1 iavzt@cenpi.com.co
1 idacdzypy@cenpi.com.co
1 ieodyf@cenpi.com.co
1 ityjuuq@cenpi.com.co
1 izmxmeov@cenpi.com.co
1 jcouzae@cenpi.com.co
1 lukaiaylc@cenpi.com.co
1 musicoterapia@cenpi.com.co
1 olatapcqy@cenpi.com.co
1 pgopoa@cenpi.com.co
1 phulaee@cenpi.com.co
1 qildejoo@cenpi.com.co
1 qmuyta@cenpi.com.co
1 sala12@cenpi.com.co
1 sala14@cenpi.com.co
1 sala16@cenpi.com.co
1 sala19@cenpi.com.co
1 sala2@cenpi.com.co
1 sala22@cenpi.com.co
1 sala27@cenpi.com.co
1 sala32@cenpi.com.co
1 sala38@cenpi.com.co
1 sala46@cenpi.com.co
1 sala57@cenpi.com.co
1 sala58@cenpi.com.co
1 sala64@cenpi.com.co
1 sala7@cenpi.com.co
1 solicitudemedicas@cenpi.com.co
1 uap@cenpi.com.co
1 ufy@cenpi.com.co
1 uwyaoxr@cenpi.com.co
1 wutocpby@cenpi.com.co
Relay access denied (total: 2)
1 156.96.61.106
1 45.143.223.248
Sender address rejected: Access denied (total: 6)
2 admin@cenpi.com.co
1 lvides@sura.com.co
1 smuneraa@gmail.com
1 ahitu2007@hotmail.com
1 nana7032@hotmail.com
Sender address rejected: cenpi.com.co (total: 1)
1 fono4@cenpi.com.co
Sender address rejected: Domain not found (total: 3)
1 frank.prieto@lapuntadeliceberg.co
1 MAILER-DAEMON@esa9.hc4583-82.iphmx.com
1 bounces+5617002-3b76-johnpulgarin=cenpi.com.co@email.co.needishmail.com
Sender address rejected: Server configuration error (total: 1625)
1200 MAILER-DAEMON@yahoo.com
55 medica.2cenpi@gmail.com
24 <>
23 calvachianalucia@gmail.com
16 pm_bounces@pm-bounces.mailchevignon.com.co
15 SANDRA.AMAYA@amareynovamedical.com
15 marylucita745@gmail.com
13 facturacioncenpi+caf_=johnpulgarin=cenpi.com.co@gmail.com
11 bounce-11_HTML-381780253-668212-10977635-15782@bounce.link.adidas.com
11 bounce-11_HTML-393412855-668212-10977635-16874@bounce.link.adidas.com
11 medica.1cenpi@gmail.com
10 cenpi.calvachi@gmail.com
10 bounces+11707055-0f2e-monicagomez=cenpi.com.co@email.masivapp.com
8 bounces+7637192-3229-monicagomez=cenpi.com.co@sg.news.rappi.com.co
8 fernanda.ochoa@alumno.buap.mx
7 gestionriesgos@suramericana.com.co
6 monica.gomezbo@amigo.edu.co
6 carolinanieto.0423@gmail.com
6 anagarrido8207@gmail.com
6 carrenoneuro@gmail.com
6 dj1409@gmail.com
6 dubycastano1000@gmail.com
6 jaimeoquendohincapie@gmail.com
6 jasor1970@gmail.com
6 merlynmurillo73@gmail.com
6 sandramariacha72@gmail.com
6 3MoE8Xw4JBScFLQGbJRPHcefdkJPDLO.FRPVDODmFHQSL.FRP.FR@calendar-server.bounces.google.com
6 3Ang8XwsJBeMLNXJQTeFIFXLRFNQ.HTRXFQFoHJSUN.HTR.HT@calendar-server.bounces.google.com
6 alisson200315@hotmail.com
6 bounces@messenger-us.gmc.net
5 carmonabetancurl@gmail.com
5 dianaosoriogr@gmail.com
5 gloriamesa1205@gmail.com
5 lorena.orregosa@gmail.com
5 yolybetancur5@gmail.com
5 leidyagudelo1986@hotmail.com
5 ana.melo.ext@ipsen.com
4 notification@facebookmail.com
4 andreamilher@gmail.com
4 caroquiroz2408@gmail.com
4 greycy0223@gmail.com
4 jonhfredygarciaramirez@gmail.com
4 marialejajr@gmail.com
4 yuliscal2003@gmail.com
4 3rpQ8XwYMDMk7p0pGFrt24x.r31.r3rp1x0p1328t7rt24x.r31.r3@calendar-server.bounces.google.com
4 MAILER-DAEMON@esa6.hc3834-14.iphmx.com
4 MAILER-DAEMON@esa9.hc4583-82.iphmx.com
4 bounces-824018200479055939@explore.pinterest.com
3 gustavo.maestre@biogen.com
3 gameshop@vps-230343.gameshopvideojuegos.com
3 hefziba858@gmail.com
3 lcpg0314@gmail.com
3 melissagilcardona25@gmail.com
3 mupeguiz1987@hotmail.com
3 juand11@live.com
2 spameri@tiscali.it
1 cenpi11+caf_=contacto=cenpi.com.co@gmail.com
1 news@softmaker.com

message reject warning detail: none

message hold detail: none

message discard detail: none

smtp delivery failures: none

Warnings
--------
bounce (total: 79)
1 01E272C6615C: undeliverable postmaster notification discarded
1 05A092C66147: undeliverable postmaster notification discarded
1 0EFB62C66156: undeliverable postmaster notification discarded
1 1FD892C66156: undeliverable postmaster notification discarded
1 2498A2C66156: undeliverable postmaster notification discarded
1 24ADA2C66156: undeliverable postmaster notification discarded
1 27A422C66147: undeliverable postmaster notification discarded
1 2C0F22C66156: undeliverable postmaster notification discarded
1 2ECCE2C66147: undeliverable postmaster notification discarded
1 324262C66147: undeliverable postmaster notification discarded
1 3AF772C66156: undeliverable postmaster notification discarded
1 3E7882C66156: undeliverable postmaster notification discarded
1 43B242C66147: undeliverable postmaster notification discarded
1 449122C66147: undeliverable postmaster notification discarded
1 4F2602C66147: undeliverable postmaster notification discarded
1 50DA42C66156: undeliverable postmaster notification discarded
1 5283C2C66147: undeliverable postmaster notification discarded
1 532672C66157: undeliverable postmaster notification discarded
1 532872C66156: undeliverable postmaster notification discarded
1 55A572C66156: undeliverable postmaster notification discarded
1 56D1E2C66157: undeliverable postmaster notification discarded
1 56D232C66156: undeliverable postmaster notification discarded
1 57B112C6615E: undeliverable postmaster notification discarded
1 5AB202C66156: undeliverable postmaster notification discarded
1 5DBC82C66157: undeliverable postmaster notification discarded
1 5F0262C66156: undeliverable postmaster notification discarded
1 60B632C66156: undeliverable postmaster notification discarded
1 6167C2C66156: undeliverable postmaster notification discarded
1 622912C66156: undeliverable postmaster notification discarded
1 6406C2C6615B: undeliverable postmaster notification discarded
1 68F302C66157: undeliverable postmaster notification discarded
1 726022C6615B: undeliverable postmaster notification discarded
1 7B8822C66156: undeliverable postmaster notification discarded
1 823882C66147: undeliverable postmaster notification discarded
1 8C5A32C66156: undeliverable postmaster notification discarded
1 8C87C2C66156: undeliverable postmaster notification discarded
1 8E4162C66156: undeliverable postmaster notification discarded
1 91D6D2C66159: undeliverable postmaster notification discarded
1 99C882C66156: undeliverable postmaster notification discarded
1 9B36E2C66147: undeliverable postmaster notification discarded
1 9C7822C66156: undeliverable postmaster notification discarded
1 9CB402C6615F: undeliverable postmaster notification discarded
1 A01FA2C66161: undeliverable postmaster notification discarded
1 A5B832C66156: undeliverable postmaster notification discarded
1 A73132C66147: undeliverable postmaster notification discarded
1 A87ED2C66156: undeliverable postmaster notification discarded
1 B91522C66156: undeliverable postmaster notification discarded
1 BABAA2C66156: undeliverable postmaster notification discarded
1 BD4BB2C66156: undeliverable postmaster notification discarded
1 BF83E2C66156: undeliverable postmaster notification discarded
1 C033C2C66156: undeliverable postmaster notification discarded
1 C1B522C6615E: undeliverable postmaster notification discarded
1 C23902C66156: undeliverable postmaster notification discarded
1 C2B232C66156: undeliverable postmaster notification discarded
1 C65D62C66156: undeliverable postmaster notification discarded
1 C7C4F2C66156: undeliverable postmaster notification discarded
1 C7C5E2C66157: undeliverable postmaster notification discarded
1 C842E2C66156: undeliverable postmaster notification discarded
1 C87BB2C66156: undeliverable postmaster notification discarded
1 C87E02C66157: undeliverable postmaster notification discarded
1 CCB752C66156: undeliverable postmaster notification discarded
1 CEF3B2C66156: undeliverable postmaster notification discarded
1 CF2A42C66156: undeliverable postmaster notification discarded
1 CF8252C66156: undeliverable postmaster notification discarded
1 D319C2C66147: undeliverable postmaster notification discarded
1 D383F2C66147: undeliverable postmaster notification discarded
1 D67372C66147: undeliverable postmaster notification discarded
1 D72202C6615F: undeliverable postmaster notification discarded
1 D7A162C66156: undeliverable postmaster notification discarded
1 DEFE52C66157: undeliverable postmaster notification discarded
1 DFAA92C66156: undeliverable postmaster notification discarded
1 DFC3A2C66156: undeliverable postmaster notification discarded
1 DFDF82C66157: undeliverable postmaster notification discarded
1 E12012C66156: undeliverable postmaster notification discarded
1 E4F832C66156: undeliverable postmaster notification discarded
1 E788D2C66156: undeliverable postmaster notification discarded
1 E78D52C66157: undeliverable postmaster notification discarded
1 EA4572C66156: undeliverable postmaster notification discarded
1 F268E2C66156: undeliverable postmaster notification discarded
lmtp (total: 1)
1 problem talking to service private/scache: Connection timed out
postqueue (total: 2)
1 /opt/zimbra/common/conf/main.cf, line 762: overriding earlier e...
1 /opt/zimbra/common/conf/main.cf, line 813: overriding earlier e...
postscreen (total: 492)
259 psc_cache_update: lmdb:/opt/zimbra/data/postfix/data/postscreen...
84 postscreen_access_list: permit_mynetworks: mynetworks lookup er...
84 postscreen_access_list: non-null host address bits in "192.168....
65 psc_cache_lookup: lmdb:/opt/zimbra/data/postfix/data/postscreen...
scache (total: 1)
1 /opt/zimbra/common/conf/main.cf, line 762: overriding earlier e...
smtp (total: 13)
8 problem talking to service private/scache: Connection timed out
4 disabling connection caching
1 /opt/zimbra/common/conf/main.cf, line 813: overriding earlier e...
smtpd (total: 4433)
1625 hash:/opt/zimbra/postfix/conf/access_table is unavailable. unsu...
1625 hash:/opt/zimbra/postfix/conf/access_table: table lookup problem
777 unknown[212.70.149.68]: SASL LOGIN authentication failed: authe...
172 smtpd_client_event_limit_exceptions: non-null host address bits...
79 mynetworks: non-null host address bits in "192.168.0.106/24", p...
54 unknown[193.35.51.13]: SASL LOGIN authentication failed: authen...
22 hostname ip-113-116.4vendeta.com does not resolve to address 78...
19 hostname mail3.suramericana.com.co does not resolve to address ...
18 unknown[78.128.113.116]: SASL LOGIN authentication failed: auth...
9 cable200-58-219-90.epm.net.co[200.58.219.90]: SASL LOGIN authen...
8 hostname cable-181-132-143-182.une.net.co does not resolve to a...
5 hostname static-ip-1815839234.cable.net.co does not resolve to ...
4 unknown[5.188.206.194]: SASL LOGIN authentication failed: authe...
2 hostname mail.manitoucloud.com does not resolve to address 192....
2 hostname cable-181-133-140-63.une.net.co does not resolve to ad...
2 hostname hfc-181-140-40-40.une.net.co does not resolve to addre...
1 hostname zg-0708a-212.stretchoid.com does not resolve to addres...
1 hostname hfc-181-142-216-231.une.net.co does not resolve to add...
1 hostname dinamic-tigo-191-95-42-39.tigo.com.co does not resolve...
1 hostname dinamic-tigo-179-15-2-133.tigo.com.co does not resolve...
1 non-SMTP command from implant-scanner-victims-will-be-notified....
1 119.29.89.167.b.barracuracentral.org: RBL lookup error: Host or...
1 mail-wm1-f45.google.com.dbl.spamhaus.org: RBL lookup error: Hos...
1 119.29.89.167.zen.spamhaus.org: RBL lookup error: Host or domai...
1 mail-wm1-f45.google.com.multi.surbl.org: RBL lookup error: Host...
1 TLS library problem: error:140760FC:SSL routines:SSL23_GET_CLIE...

Fatal Errors: none

Panics: none

Master daemon messages
----------------------
8 reload -- version 3.1.1, configuration /opt/zimbra/common/conf
2 daemon started -- version 3.1.1, configuration /opt/zimbra/common/conf
1 terminating on signal 15
weldestein7x
Posts: 1
Joined: Mon Apr 12, 2021 2:48 pm

Re: Servidor Zimbra genera SPAM

Post by weldestein7x »

¿Cómo pudiste resolver el problema del spam? Saludos!
elderf
Advanced member
Advanced member
Posts: 65
Joined: Sat Sep 13, 2014 12:10 am

Re: Servidor Zimbra genera SPAM

Post by elderf »

Seguramente hay una o varias cuentas comprometidas o tienes malware en tu servidor... salir de una lista negra es en extremo dificil.. trata de eliminar el malware - envio de spam y luego utiliza un relay smtp
patogb80
Posts: 1
Joined: Tue Jul 13, 2021 9:47 pm

Re: Servidor Zimbra genera SPAM

Post by patogb80 »

Estaba con el mismo caso, al servidor con la versión 8.8.15 le apliqué las configuraciones de revisión de listas RBL y demás, pero al final tenía 3 cuentas que siempre enviaban spam, luego de cambiarles la contraseña y aplicar un antivirus con antimalware en las PC del usuario se pudo corregir, también me tocó cambiar la IP pública porque me fue imposible sacarlo de las blacklist de Outlook.
Post Reply