mav's questions -server

mav

Asked: 2009-05-29 06:54:10 +0800 CST

How do you detect a spambot on your network?

I help manage a small network of about 40 computers. We are running an Exchange 2003 mail server.

What is the best way to find which machine is infected by a spambot? I've tried installing anti-virus and anti-malware programs on each computer. After scanning the computers I did find a few that had lots of malicious programs and thought that our problem was solved. However our domain keeps getting blocked by DNS Blacklists and I have to remove them daily for our clients to receive our e-mail.

Note: We are being attacked by Directory Harvest and Backscatter tactics.

edit: Our e-mail server doubles as a DNS server. Could this possibly open up vulnerabilities for spam attacks?

How do you detect a spambot on your network?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?