Useful cmd for quick checking compromised account in case of internal spam:
cat /var/log/zimbra.log | sed -n 's/.*sasl_username=//p' | sort | uniq -c | sort -n
Accont with much difference in sent mails is the one to inspect...
Zimbra mail server check for spammer account
This entry was posted by admin
in category 2016
on Friday, 14 October 2016 11:33
in blog NETWORKING - VIRTUALIZATION
subscribe
Bookmark
