Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: katumba on November 09, 2006, 06:51:23 PM

Title: SME: trojan & spam relay safe?
Post by: katumba on November 09, 2006, 06:51:23 PM

How safe is SME 7 from being infected with trojan's and being used as a mail/spam relay?

How is that checked? Which log file can i check to see if server is infected?

thanks!
Kat

Title: SME: trojan & spam relay safe?
Post by: mmccarn on November 10, 2006, 03:49:02 PM

As configured by default SME is very secure.  

If you have changed any of the default settings you should tell us so that we can give you specific recommendations on how to see what might have been compromised by those changes.

If you are having a specific problem you should tell us what it is so we can discuss possible causes & solutions.

Any spam delivered by your SME server should generate an entry in /var/log/qmail/current.

"rkhunter" is scheduled to run daily to check for rootkits - results are emailed to the local admin, and can also be found in /var/log/rkhunter.log

(both of these logs can be viewed from the server-manager).

Title: SME: trojan & spam relay safe?
Post by: katumba on November 15, 2006, 08:51:58 PM

thanks for the reply. No specific problems or issues. Just wanted to be proactive and know which logs etc to check.

Thanks again!