Skip to main content

__cpanel__service__auth__icontact sending spam

Comments

5 comments

  • cPRex Jurassic Moderator

    Hey there!  I can't say I've seen anything quite like that before.  For security reasons, it would be best to submit a ticket so the machine can be investigated.

    0
  • Luis Falcon

    Turns out it's a bug:

    For people reading this after a google search: Check a mail specimen, if your case is the same as my case it surely has an .ics file attached to it, and one of the listed invited participants on this .ics is a legit user on the server. Turns out that some bug in the roundcube calendar sends notifications the wrong way with the event organizer as the sender instead of the actual user of the email account that received the invitation. If the event organizer is not on your server, well, you'll have these entries on the logs where both the sender and the recipient are not on the server and, somehow, (not sure exactly how) cpanel's icontact service sent the mail.

    cPRex:
    I did, yesterday, the ticket id is #95392082 and they told me that this was already known and that the developer team already has a case for it: case ID CPANEL-45748, not sure how to check that case tho since a search doesn't return any results. Thanks!

    0
  • cPRex Jurassic Moderator

    Luis Falcon - thanks for sharing!  There isn't a way for you to check that case but I can see it's on the developer's radar and I'll be sure to post an update here if I hear anything on my end!

    0
  • Ivis Andrade

    Resolved?

    0
  • cPRex Jurassic Moderator

    I don't see that there has been a fix just yet as it is still on the team's backlog.

    0

Please sign in to leave a comment.