Mailtraq - the Complete Email Server
   

Enstar for Mailtraq email server sales & support
Making world-class Internet technology affordable  

Search for:

Advanced search

KB07091801 Clearing the outbox - Open Relay recovery

 

Why would I want to do this?

If your installation is subject to an attack from being an open-relay through mis-configuration, or through a virus or Trojan infestation, you can have a situation where there are many thousands of messages in the outbox.

 

Stop the open-relay first

If you suspect you may be in an open relay situation solve that problem:

See how to stop an open-relay

 

Tip
 A similar problem can be manifested in the Pending folder.
You can use these same techniques to clear a choked Pending folder

 

If the Outgoing Mail 'outbox' becomes choked with messages it can be impossible to remove them from within the Console, or if Mailtraq is shutdown it can be very slow to open the Console as Mailtraq attempts to load the messages into view. 

How to clear the 'outbox'

This procedure involves manipulating the Mailtraq files 'behind the scenes'. Whenever you are working directly with Mailtraq's files it is important that Mailtraq is shut-down to avoid possible database corruption. Mailtraq expects to have sole access to it files at all times. If you are working with the file structure you may lock or move a file that Mailtraq expects to have access to.

Backup

It is important to have a regular backup routine for your installation so that you can recover easily if necessary .
See www.mailtraq.com/backup

Normally when working with Mailtraq's files we recommend taking a copy of the Database folder - and we do say this below. However, this is one situation where this may not be practical, as it is possible that the Outbox is so large. If that is the case - then proceed without the backup stage, but take extra care.*

At least take a snap-shot backup of your Configuration. How to backup the Configuration...

Procedure

Mailtraq is normally installed to C:\Program Files\Mailtraq\
If your installation is elsewhere you will need to adjust the Path:\  to suit your situation.

 

Shut down Mailtraq

Take a safety *backup copy of the Database folder and place it somewhere safe.

Locate the folder called:
C:\Program Files\Mailtraq\database\mail\outbox

Rename the folder to:
C:\Program Files\Mailtraq\database\mail\outbox-old

Check the \pending folder (see below).

Restart Mailtraq

Mailtraq will now resume operation normally, recreating a new Outbox on-demand, but all messages in the outgoing mail will have been removed.

 

 

What next?

You must decide whether to simply discard the folder now called 'outbox-old', and all the messages it contains, or to try to sort through the folder to remove any valid outbound messages from the spam.

If you choose to find the 'good' messages, you may find it helpful to sort the folder by file-size. It is usually the case that the messages stuck in the outbox are spam, and they are all the same message. You can then delete these files. You can re-route any valid messages you find by placing them in the Pending folder - Mailtraq will then send the messages in the normal way.

It is very important to discover why your outbox had so many messages stuck in it, to prevent this situation from happening again.

If you changed Mailtraq's safe configuration to accidentally become an open-relay then you can restore the default settings with reference to this page.

If you think that the messages originated from one of the client machines on your network that had become compromised, an examination of the Event Log should indicate which machine is connecting and causing the problem.

In any case, you should use this event as a prompt to change your User's Passwords. 

Choose Strong User Passwords

Care should be taken to follow the best password advice, and particularly pay attention to test User accounts that may have been used during the original set up. 

For example: a user called 'test' with a password of '123456', or 'admin' with 'password'  and so on are  very easily guessed and could be exploited.

Virus scan your clients

You should run a virus scanner on each of your client machines to clean out any Trojans. Mailtraq itself is immune from virus or Trojan attack.

Finally

Once you are satisfied that Mailtraq is performing normally, you can archive or delete the safety Database backup.


Additional advice


Pending folder
If you are in this situation due to an 'open-relay' spam incident, then you should also check the Pending folder, and proceed in a like manner.

Locate the folder called:
C:\Program Files\Mailtraq\database\mail\pending

Rename the folder to:
C:\Program Files\Mailtraq\database\mail\pending-old

Why should I do this?
Messages arriving in Mailtraq are first routed to the Pending folder. In an open-relay attack many thousands of messages may be queued in Pending, which then get routed to the Outbox. If you do not also clear Pending, then as soon as Mailtraq restarts it can seem that the problem still exists - even if you have fixed the relay problem and emptied the Outbox.

 


Keywords: kb troubleshooting
Mailtraq Highlights...
 SMTP Server     Mailtraq SMTP email server video IMAP Server     Mailtraq IMAP email Server video
 POP3 Server     Mailtraq POP3 email server video Proxy Server     Mailtraq proxy email server video
 Webmail Server     Mailtraq webmail email server video Mailing-list Server     Mailing list email server video
 Groupware Services     Mailtraq groupware email services video Spam and Virus control     Spam and virus control email server video

 

   Copyright © 2003 - 2011 Enstar Ltd, Enstar LLC & Fastraq Ltd. All rights reserved. Privacy policy.
   Mailtraq® is a registered trademark of Fastraq Limited.