Softaculous

Topic : Security Bug in Email Services


Posted By: eaglepie on May 14, 2022, 11:59 am
Hi Support,

1. Email Query Manager Showing more than 36000 mail on queue. Thousands of Mail Already Sended without my notice. System Sending Unsolicited mail cause my mail ip blocking issues. System Sending mail to random mail id/server. Due to that my mail get blocked. How can i stop that from mailing too much mail. I checked on mxtoolbox my website ip showing as blacklist. May be bug or a Security Issue with current webuzo. I got absued notice from hosting provider.

2. Due to Bug/Security Someone has access to send email as root user may be also be login to system without user know. Please Suggest me solution to stop that. I need to update this with hosting provider for restore myall services.

3. Suggestions: Set Daily Email Limit to Root/System user in Webuzo. Also add Seperate Mail Sending limits to by domain. Admin able to set daily send limit to any domain seperately(like multi php setting).



My Panel Config : server.domain.com ( Behind Cloudflare ) Mx Value: Dns Only Set
Primary Domain  : host.example.com


Regards
Gaurav Ghosh

Posted By: eaglepie on May 14, 2022, 12:02 pm | Post: 1
Attaching Screenshot from My panel. All mail goes through root user in email queue manager showing as sending as system user.

Posted By: Brijesh on June 13, 2022, 11:13 am | Post: 2
Hi,

Sorry for the delay in response.

The emails sent by the user which is running the process. So if the script is being run by a user the sender will be that user only.

If you are still facing the issue please open a support ticket with us so we can check this for you :
https://softaculous.deskuss.com/open.php

It could be possible that your server is compromised due to which the unsolicited emails are being sent.

We do have option to set limits on outgoing emails which can be configured from Webuzo admin panel -> Email -> Mail Settings

-----------------------
Webuzo - Multi User Hosting Control Panel
AMPPS - Best WordPress/PHP/MySQL development tool

Posted By: eaglepie on June 13, 2022, 11:32 am | Post: 3
Hello Support,

Thanks. Issue Solved. I Generated a ticket. Someone injected a script in my root domain to send spam mail. I set the mail limit through mail setting from unlimited to limit and added mod security, CSF firewall, HTTPS redirect, and spam assassin. Now services are working correctly.

Latest Version 3.3.6 has an issue with Awstats. Currently no 500x and 400x errors. Able to see the Awstats Panel. The issue is All images are broken and do Not give correct statistics after checking the Awstats panel.

Posted By: eaglepie on June 13, 2022, 11:38 am | Post: 4
Hello Support,

Screenshot URI for Reference. https://ibb.co/vhdpkjL Awstats started working after reinstall but gave 404 error for all images related to Awstats. Awstats not showing correct status of visitors. Only Showing Unique Visitor 1. Please Also correct this error in an upcoming version.



Posted By: lupari_123 on June 13, 2022, 5:40 pm | Post: 5
Hi

Posted By: sanepiglin on November 3, 2023, 9:52 am | Post: 6
hello guys! Nice to meet you

Powered By AEF 1.0.8 © 2007-2008 Electron Inc.