Hi, I am running Ispconfig 2 on Debian. I found out that the server is misused for spam sending. What I have checked is: - port 25 is closed from external, only connections from localhost/127.0.0.1 are allowed So this system is not a open relay. But still there are many mails popping up in the queue. this is one message: Code: May 13 10:27:50 ip2 postfix/pickup: 42EC21076B: uid=33 from=<[email protected][email protected][email protected][email protected] I don't understand where the messages come from, where/how they are generated. When I look at the "/etc/passwd" file the id 33 is this: So this means that the webserver is generating all these mails? Can you help me?