Thes spamers have to much time on hand! For a few months I could get them under controll but suddenly I get lot of spam "comming from myself" (spoofed) or otherwise. This is visible on both ISPC2 & ISPC3. In my search to check my systems I found that port 3306 is OPEN to the internet. Well in the http://www.howtoforge.com/perfect-server-ubuntu-10.04-lucid-lynx-ispconfig-3-p4 setup we remark out the localhost bind in mysql config. I do not understand the need for ISPC to be open to the internet! and the firewall do not block it either. Any suggestions or from a security side how can we secure this more? http://www.mxtoolbox.com < good tool for outside view looking to your servers.