[Ask] Cara Mengatasi Spamming Email

Discussion in 'Masalah Teknik dan Keamanan' started by cyberidiot, 5 Jun 2013.

Thread Status:
Not open for further replies.
  1. cyberidiot

    cyberidiot Poster 2.0

    Messages:
    126
    Likes Received:
    12
    Trophy Points:
    18
    mau numpang tanya nih,,,

    saya ada VPS + WHM, saya cek load server tinggi karena ada USER: mailnull , command exim

    setelah mencoba diselidiki, ada beberapa website klien

    misal: http://xxxx.com/wp-includes/theme-compat/functions.php

    URL ini saya dapet dari cPanel - Latest Visitor

    saya coba buka url tersebut, yg tampil dilayar: Linux10+cfcd208495d565ef66e7dff9f98764da


    cari-cari di google, ternyata ada script spamming,

    yg saya tanyain, bagaimana cara mengatasi masalah seperti ini?


    Thanks :rolleyes:
     
  2. dhyhost

    dhyhost Hosting Guru Web Hosting

    Messages:
    3,940
    Likes Received:
    614
    Trophy Points:
    113
    kalau emang spamming, tinggal suspend aja, kok repot ?
     
  3. cyberidiot

    cyberidiot Poster 2.0

    Messages:
    126
    Likes Received:
    12
    Trophy Points:
    18
    ya repot, emang dengan di suspend bisa menyelesaikan masalah?

    SUSPEND = WEB TIDAK BISA DIAKSES.


    jangan-jangan Anda sbgai penyedia hosting asal main SUSPEND aja, gak memberikan solusi kepada klien.

    Kalau komentar, yang smart dong... komentar Anda dinilai byk orang disini, kompeten atau tidaknya Anda dalam perhostingan, terlihat disini.
     
  4. voezie

    voezie Hosting Guru

    Messages:
    1,771
    Likes Received:
    212
    Trophy Points:
    63
    1. Coba di update wordpress nya Tuan
    2. Beri limit pengiriman email di akun tersebut (Bisa dari menu modify account di WHM)
    3. Scan dengan Anti Virus/Anti Malware yang ada untuk menghapus suspicious script nya
     
    cyberidiot likes this.
  5. andhi

    andhi Hosting Guru

    Messages:
    1,678
    Likes Received:
    132
    Trophy Points:
    63


    itu adanya di themes wpnya ? coba cek ke clientnya themesnya dapet dr mana ? klo premium ya update aja themesnya, klo wp ini klo dapet themesnya smbarangan bisa ditembus terus, paling aman sering update core wpnya, themesnya kalau free yg sering update carinya, atau beli yg premium sekalian biar aman
     
    cyberidiot likes this.
  6. dhyhost

    dhyhost Hosting Guru Web Hosting

    Messages:
    3,940
    Likes Received:
    614
    Trophy Points:
    113
  7. BennyKusman

    BennyKusman Hosting Guru DWH Guardian Web Hosting (Company)

    Messages:
    2,234
    Likes Received:
    239
    Trophy Points:
    63
    Mudah2an ini membantu:

    excerpt from http://forums.cpanel.net/f5/setup-l...-hour-per-domain-users-201222.html#post843452

    The intention of this guide is to provide some steps to help tighten the email sending practices on a machine in order to facilitate both determining the legitimate sender of an email as well as preventing spoofing on the machine.

    WHM Options to Enable

    1. Preventing nobody from sending emails

    WHM > Tweak Settings, select “On” for the following option:

    Prevent “nobody” from sending mail [?]

    Prevent the user “nobody” from sending out mail to remote addresses
    (PHP and CGI scripts generally run as “nobody” if you are using mod_php or have Suexec disabled.)
    Then click the “Save” button to save the configuration change.

    If you are using DSO for the PHP handler, this option is not advised. You can see in WHM > Apache Configuration > PHP and SuExec Configuration area which PHP handler is being used on the machine.

    The default handler for new cPanel installations would be suPHP, which would work for the above option. If you are using an older setup with DSO, it would be recommended to change to suPHP for better tracking on who is running PHP processes for scripts that send emails anyway.

    2. Setting the Sender header when the email sender tries to spoof the sender

    WHM > Exim Configuration, select the following:

    Set the Sender: Header when the mail sender changes the sender (-f flag passed to sendmail) and Sender Verification Callouts set to ON

    Then click the “Save” button to save the configuration change.

    3. Adding MailHeaders for PHP

    WHM > EasyApache (Apache Update) > Step 6 Exhaustive Options List in the PHP section (PHP 4 and/or PHP 5), select the following:

    MailHeaders
     
    budiono and cyberidiot like this.
Loading...
Thread Status:
Not open for further replies.

Share This Page

Loading...