I have a qmail server running for sometime now that hasn't had any problems. I recently started seeing spam bounces, with the format of the email being dwDOMAINm@DOMAIN.com. Looking at the headers, it appears to be coming from my server. I tested for relay and there appear to be no holes. I have logging turned on for sending email but haven't seen any login attempts for smtp (I don't send that much email through here). I even turned on snort to trace all traffic for the host for days and didn't see any attempts to send email out, but yet I still seem to get the bounced spam. I also checked my trash for filtered spam and have seen other spam attempts using the format referenced above but different domain names.
Is anyone else seeing this and is there any way to stop it?
Thanks.
Is anyone else seeing this and is there any way to stop it?
Thanks.