Rejo Zenger writes on 12/15/2003 4:42 AM:
> I know I'm not helping you directly with this answer, but as long as you
> haven't fixed your problem, shutdown exim immediately. You don't want to
> keep exim running if it's being abused by spammers.
>
> Also, you could help others helping you by posting some more
> information. Relevant sections of your configfile for a starter.
He said -
> prevent users to sendmail as nobody
Which means that the spammer is likely abusing a cgi script on his site
- and that'd call exim from the commandline, not speak smtp to port 25.
srs
