• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved Blacklisted, and the sky is falling

NateWon

NateWon

Basic Pleskian
Hello I hope this is ok to post here,

Ive been blacklisted by spamhaus, and it appears that this may be the case:

"If this IP address is NOT a shared hosting IP address, this IP address is infected with/emitting spamware/spamtrojan traffic and needs to be fixed. Find and remove the virus/spamware problem then use the CBL delisting link below. "

Ive disabled postfix whilst I try and find the cause, as it kept ranking up scores (bad idea, not sure?)

Ive run clamav, maldetect, chkroot, and rkhunter, only clamav had positives all from the mail drive, Ive tested sending the Eicar virus test file and that doesn't get through SMTP.

Ill be updating Plesk onyx to the latest version later tonight, but was wondering if anyone had any advice.
The sending appears to be hourly for the last day or so,

We a;lso get a 97% score from Vircom test,

Any tips in solving this issue would be appreicated
Thanks
 
Ok so this took a long time to workout. Was looking for something to do what this does, was able to solve it quickly when could check the effect of the change
The CBL

Turns out, the settings in main.cf where correct but Plesk has another set of settings, "Use IP Addresses and Domain for Greeting", I needed to disable that option to ensure that my config wasn't overwritten. Our servers are setup to use a single secure domain for hosting mail.domain.com, instead of every clients domains for that (does the newer version allow for lets encrypt certificates on mail accounts?).

Sorted now,
 
You must log in or register to reply here.

Similar threads

T
Issue Server listed on Spamhaus XBL on a daily basis
Replies
12
Views
4K
UFHH01
U
danami
Input Warden Antispam & Virus Protection Extension for Plesk
7 8 9
Replies
175
Views
49K
danami
danami
danami
Resolved Juggernaut Security and Firewall Plesk Addon
4 5 6
Replies
114
Views
40K
danami
danami
Back
Top