is server wide harvesting possible
Maybe I'm being paranoid here.
I can see a spam email trying to hit a few email addresses on my company domain.
Searching through the reject list, and the same spam email has tried also tried to hit an email on my personal domain, which just happens to be on the same server.
Is this pure co-incidence or is harvesting server wide email addresses possible ?
Until recently, these two domains were on different servers, so this would never have been spotted.
-
Hello :) It's difficult to pinpoint exactly where or how a spammer harvested those email addresses. It's certainly possible if your server was rooted or exploited at some point in the past, but it's also possible that it's a widespread SPAM email that made it's way to both email addresses. It's also possible the domain name was obtained from a reverse WHOIS search, which will list all domain names hosted on a specific IP address. Thank you. 0 -
Maybe i'm just being paranoid and over protective. Whilst it may have been compromised in the first few days of setting up, there were no domains on it worth worrying about. Just a test domain. I discovered CSF, and was also testing many different build scenarios, so decided the best course of action would be to rebuild it from scratch (just in case) then install CSF before adding any real domains. My personal domain was the first one on there, followed by the company domain a few weeks later. I watch every log like a hawk and i'm pretty confident in saying i don't believe it's been rooted or compromised. Just to test something, i've created a new email on my personal domain today, something you wouldn't expect to be used as an email address, something stupid. Lets see what happens 0
Please sign in to leave a comment.
Comments
2 comments