My SMTP server transferring out Terabytes of data in a day [duplicate]

bandwidth centos linux-networking smtp

Solution 1:

The most likely reason is that the server is compromised.

In the most simple case: the server is not configured correctly and it can be used as an open relay, allowing anyone to use your mailserver to send spam.

You can diagnose that (and other issues) by checking the log files on the server.

Potentially the mail server itself is fine, as such abuse can also occur when the server is configured correctly, but the credentials of valid user are getting abused, or the source the abuse is a trusted system/sender elsewhere in your network and you've only started to noticed the effects of that compromise on the mail server. Again: check you log files.

In more serious cases your server is fully compromised. Then you may not even have log files anymore or when you do, they may not show any obvious abuse and can't be trusted...
Then read: How do I deal with a compromised server?

Related

DHCP Pools on Ubuntu DHCP server not working properly
Show free SSD space after TRIM / UNMAP / Deallocate?
Can you help me understand this EXIM Log?
What could cause an LTO drive to write at half its capacity?
dhcpd server invalid mac detection
why Seagate is bad harddrive? [closed]
How to make debug work in post_tasks with tags
How to display percentage of CPU load info set by stress-ng utility at specific interval into terminal?
How do I make g++ 10 my default c++ compiler [duplicate]
Why is pip throwing error while installing packages?
Sound volume icon (volume control widget) disappears from tray and Fn-F11/Fn-F12 keys do not work
PWA .desktop file opening new browser window instead of the app