Originally Posted by tristanlee85
I went through and enabled spam protection on the accounts so we'll see if that helps. How is someone else able to use my server to send spam? I have SASL turned off because I had an issue in the past with a generic user/pass combo and a spammer was sending out thousands of emails by logging in and sending mail out.
9 times out of 10 your server is not sending these emails.
Other spammers are sending emails using fake emails like firstname.lastname@example.org
So you end up getting all there trash from there spammage.
If you enable spam detection it should help and disable catch all options for email address.
I dont see a need to disable SASL either. its Useful.