my server ip just got blocked by spamhaus and for now almost all my outgoing email are blocked so there is any solution with that and thanks
Various similar issues: Search results for 'spamhaus' - Hestia Control Panel - Discourse
Check them please.
hi nu01 , i hope you are doing, well i’ve checked them already , all subjects were almost talking about incoming mails , in my case its the outgoing email from my server.
Go this address: https://check.spamhaus.org/ check your IP and request for removal.
i already opened a ticket with them and this was their response :
Thank you for contacting the Spamhaus Ticketing team,
Is sending email to unconfirmed addresses (and our spam traps).
This must be resolved before asking for a removal.
Not confirming your signups means that some important email intended for your customers is being sent to other people. For example: if you are sending invoices, they are NOT going to be paid. If you are sending appointment confirmations, those appointments WILL be missed. If you are sending critical transactional mail like password change confirmations or banking information, those will NOT be received. These emails are being sent to our spam traps instead of your customers.
In the worst case, these unintended recipients may choose to exploit the information sent. Continuing this practice also risks exposing your client’s personal information and is potentially a violation of privacy rights, depending on the country and laws that apply.
This may be the result of an issue with data your collection processes, data hygiene, or both. All of the following are considered best practices and will improve your inbox placement if followed:
* Confirming all new sign-ups
* Re-confirming existing mailing lists
* Retiring non-responsive subscriptions (implementing a sunset policy)
* Protecting web-forms from unwanted signups by deploying CAPTCHA are all appropriate means solve this issue.
Pretty clear. Your server is being used for spamming. Check for rootkits, open relays, check the logs, check the firewalls, insecure (php-)scripts, etc.
i’ve checked also everything and all seems good on logs
since spamhause blocked the ipv4 of server , can’t fix the settings for exim4 to use only the ipv6 of the server and everything will be fine like that ?
or the apps and pages on it are just poorly configured, not utilizing smtp account but sending mail via php / sendmail directly. this can easily be enough to be exploited with login forms, comment fields and no captcha and whatnot.
to put it here directly: there is no easy way around it. clean up your set up and make sure to follow best practices.
no unauthenticated direct sending of mails, spf/dkim in place for all domains and of course check the logs for what mails your server is actually sending and to whom/why, to find stuff going out, you might not even be aware of.
you could set up your server to use something like AWS SES in general as an SMTP relay. but rest asured, AWS will kick you in the butt also, if your apps or pages are not fixed up and still sending spam.
Bad idea. You will have to fix the issue. Placing a bandaid is not a solution. right now, your server is spamming the internet and you should fix that asap.